Update Protection against Oracle Secure Backup Administration Server Authentication Bypass Vulnerability
| Check Point Reference: | CPAI-2010-246 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Oracle Critical Patch Update Advisory - July 2010 | |
| Industry Reference(s): | CVE-2010-0904 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Oracle Secure Backup 10.2.x prior to 10.2.0.5 Oracle Secure Backup 10.3.x prior to 10.3.0.2 | ||
| Vulnerability Description An authentication bypass vulnerability has been reported in Oracle Secure Backup server. Oracle Secure Backup is a backup solution allowing for single point of management of data present on network attached storage (NAS) devices and distributed hosts. A remote attacker may exploit this issue to bypass authentication on vulnerable installations of Oracle Secure Backup. |
||
|
Update/Patch Available Apply patches: Oracle Critical Patch Update Advisory - July 2010 |
|
|
Vulnerability Details The vulnerability is due to a flaw in the logic used to authenticate a user to the Oracle Secure Backup administration server. The script login.php does not properly sanitize the 'uname' variable before using it in a command line tool. A remote attacker could exploit this flaw by sending a specially crafted 'uname' variable to the affected server. Successful exploitation of this vulnerability allows remote attackers to bypass authentication on vulnerable installations of Oracle Secure Backup. |
Protection Overview
This protection will detect and block attempts to exploit this vulnerability.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection taband select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.