Vulnerabilities > CVE-2008-5457 - Multiple vulnerability in Oracle January 2009 Critical Patch Update
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in the Oracle BEA WebLogic Server Plugins for Apache, Sun and IIS web servers component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 7 |
Exploit-Db
description Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit. CVE-2008-5457. Remote exploit for windows platform id EDB-ID:8336 last seen 2016-02-01 modified 2009-04-01 published 2009-04-01 reporter Guido Landi source https://www.exploit-db.com/download/8336/ title Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit description BEA WebLogic JSESSIONID Cookie Value Overflow. CVE-2008-5457. Remote exploit for windows platform id EDB-ID:16762 last seen 2016-02-02 modified 2010-07-03 published 2010-07-03 reporter metasploit source https://www.exploit-db.com/download/16762/ title BEA WebLogic JSESSIONID Cookie Value Overflow
Metasploit
description | This module exploits a buffer overflow in BEA's WebLogic plugin. The vulnerable code is only accessible when clustering is configured. A request containing a long JSESSION cookie value can lead to arbitrary code execution. |
id | MSF:EXPLOIT/WINDOWS/HTTP/BEA_WEBLOGIC_JSESSIONID |
last seen | 2020-03-10 |
modified | 2017-09-14 |
published | 2009-03-27 |
references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5457 |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/http/bea_weblogic_jsessionid.rb |
title | BEA WebLogic JSESSIONID Cookie Value Overflow |
Nessus
NASL family | Web Servers |
NASL id | WEBLOGIC_PLUG_IN_1166189.NASL |
description | The remote web server is using the WebLogic plug-in for Apache, IIS, or Sun web servers, a module included with Oracle (formerly BEA) WebLogic Server and used to proxy requests from an HTTP server to WebLogic. The version of this plug-in on the remote host is affected by an as-yet unspecified buffer overflow that is triggered when processing a specially crafted request. An unauthenticated, remote attacker can leverage this issue to execute arbitrary code on the remote host. Note that Nessus has not tried to exploit this issue but rather has only checked the affected plug-in |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 35374 |
published | 2009-01-15 |
reporter | This script is Copyright (C) 2009-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/35374 |
title | Oracle WebLogic Server Plug-in Remote Overflow (1166189) |
code |
|
Packetstorm
data source https://packetstormsecurity.com/files/download/76269/weblogic-overflow.txt id PACKETSTORM:76269 last seen 2016-12-05 published 2009-04-01 reporter k'sOSe source https://packetstormsecurity.com/files/76269/Oracle-WebLogic-IIS-Connector-Overflow.html title Oracle WebLogic IIS Connector Overflow data source https://packetstormsecurity.com/files/download/83224/bea_weblogic_jsessionid.rb.txt id PACKETSTORM:83224 last seen 2016-12-05 published 2009-11-26 reporter Pusscat source https://packetstormsecurity.com/files/83224/BEA-Weblogic-JSESSIONID-Cookie-Value-Overflow.html title BEA Weblogic JSESSIONID Cookie Value Overflow
Saint
bid 33177 description Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH buffer overflow id database_oracle_backupndmpbo,database_oracle_backupver osvdb 51340 title oracle_secure_backup_ndmp_clientauth type remote bid 33177 description Oracle Secure Backup login.php ora_osb_lcookie command execution id database_oracle_backupver osvdb 51343 title oracle_secure_backup_login_lcookie type remote bid 33177 description Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow title weblogic_iis_connector_jsessionid type remote bid 33177 description Oracle Secure Backup login.php rbtool command injection id database_oracle_backupver osvdb 51342 title oracle_secure_backup_login_rbtool type remote bid 33177 description Oracle Database OLAP component ODCITABLESTART buffer overflow id database_oracle_version osvdb 51347 title oracle_olap_odcitablestart type remote
Seebug
bulletinFamily | exploit |
description | No description provided by source. |
id | SSV:10935 |
last seen | 2017-11-19 |
modified | 2009-04-02 |
published | 2009-04-02 |
reporter | Root |
source | https://www.seebug.org/vuldb/ssvid-10935 |
title | Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit |