Intrusion Prevention

Oracle.Application.Server.Portal.Authentication.Bypass

Description

This indicates an attack attempt against a authentication bypass vulnerability in Oracle application server.
The vulnerability is caused by an error when the vulnerable software handles a malicious request. It allows a remote attacker to bypass authentication via sending a crafted web page.

Affected Products

Oracle Application Server (OracleAS) Portal 10g

Impact

Security Bypass

Recommended Actions

Block network access to affected service.

CVE References

CVE-2008-2138