Oracle XSQL Stylesheet Vulnerability Network Vulnerability

Summary

The Oracle XSQL Servlet allows arbitrary Java code to be executed by an attacker by supplying the URL of a malicious XSLT stylesheet when making a request to an XSQL page.

Solution

Until Oracle changes the default behavior for the XSQL servlet to disallow client supplied stylesheets, you can workaround this problem as follows. Add allow-client-style='no' on the document element of every xsql page on your server. This plug-in tests for this vulnerability using a sample page, airport.xsql, which is supplied with the Oracle XSQL servlet. Sample code should always be removed from production servers.

Severity

Classification

CVE CVE-2001-0126

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat Windows Installer Privilege Escalation Vulnerability
AlienVault Open Source SIEM (OSSIM) 'timestamp' Parameter Directory Traversal Vulnerability
Adobe ColdFusion Information Disclosure Vulnerability
Astium VoIP PBX SQL Injection Vulnerability
ArticleFR CMS Multiple Vulnerabilities - Jan15

Take action and discover your vulnerabilities