CVE-2005-4550 in Application Server Discussion Forum Portletinfo

Summary

The PORTAL schema in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to obtain the source code for arbitrary JSP and other files via a df_next_page parameter with a trailing null byte (%00).

Once again VulDB remains the best source for vulnerability data.

Reservation

12/28/2005

Disclosure

12/28/2005

Moderation

VulDB entry created

Entries

1: VDB-27786

CPE

ready

CWE

CWE-200 (Confirmed)

Exploit

Download

CVSS

5.3

EPSS

0.51367

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-4550
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4550
CVE Details	https://www.cvedetails.com/cve/CVE-2005-4550/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!