Oracle 9i Application/Database Server SOAP XML DTD Denial Of Service Vulnerability
BID:9703
Info
Oracle 9i Application/Database Server SOAP XML DTD Denial Of Service Vulnerability
| Bugtraq ID: | 9703 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 20 2004 12:00AM |
| Updated: | Feb 20 2004 12:00AM |
| Credit: | Oracle has credited Amit Klein of Sanctum Inc. with discovery of this vulnerability. |
| Vulnerable: |
Oracle Oracle9i Standard Edition 9.2 .0.2 Oracle Oracle9i Standard Edition 9.2 .0.1 Oracle Oracle9i Standard Edition 9.0.1 .4 Oracle Oracle9i Personal Edition 9.2 .0.2 Oracle Oracle9i Personal Edition 9.2 .0.1 Oracle Oracle9i Personal Edition 9.0.1 .4 Oracle Oracle9i Enterprise Edition 9.2 .2 Oracle Oracle9i Enterprise Edition 9.2 .0.1 Oracle Oracle9i Enterprise Edition 9.0.1 .4 Oracle Oracle9i Application Server 9.0.3 .1 Oracle Oracle9i Application Server 9.0.3 Oracle Oracle9i Application Server 1.0.2 .2.2 Oracle Oracle9i Application Server 1.0.2 .2 |
| Not Vulnerable: | |
Discussion
Oracle 9i Application/Database Server SOAP XML DTD Denial Of Service Vulnerability
Oracle 9i Application and Database services are prone to remote denial of service attacks. This issue is reportedly triggered by passing malformed DTDs (Data Type Definitions) via XML inside of a SOAP (Simple Object Access Protocol) message.
This may be exposed if authentication for SOAP is not enabled or if the attacker is able to gain unauthorized access to SOAP services. It has been reported that authentication to SOAP is not enabled by default in Oracle9i Application Server Release 2, version 9.0.2.1 and prior, therefore increasing the chances of exploitation.
Oracle 9i Application and Database services are prone to remote denial of service attacks. This issue is reportedly triggered by passing malformed DTDs (Data Type Definitions) via XML inside of a SOAP (Simple Object Access Protocol) message.
This may be exposed if authentication for SOAP is not enabled or if the attacker is able to gain unauthorized access to SOAP services. It has been reported that authentication to SOAP is not enabled by default in Oracle9i Application Server Release 2, version 9.0.2.1 and prior, therefore increasing the chances of exploitation.
Exploit / POC
Oracle 9i Application/Database Server SOAP XML DTD Denial Of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Oracle 9i Application/Database Server SOAP XML DTD Denial Of Service Vulnerability
Solution:
Fixes are available via Oracle Metalink. Please see that referenced Oracle advisory for more details on how to obtain fixes.
Solution:
Fixes are available via Oracle Metalink. Please see that referenced Oracle advisory for more details on how to obtain fixes.