Summary
We detected the remote web server as an Oracle
Applications' One-Hour Install web server. This web server enables attackers to configure your Oracle Application server and Oracle Database server without any need for authentication.
Solution
Disable the Oracle Applications' One-Hour Install web server after you have completed the configuration, or block the web server's port on your Firewall.
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Linux)
- Adobe Air Multiple Vulnerabilities June-2012 (Windows)
- Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Mac OS X)
- Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)
- Adobe Air Multiple Vulnerabilities - October 12 (Mac OS X)