cvelistv5 - CVE-2007-1359

CVE-2007-1359 (GCVE-0-2007-1359)

Vulnerability from cvelistv5 – Published: 2007-03-08 17:00 – Updated: 2024-08-07 12:50

Summary

Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.oracle.com/technetwork/topics/security…	x_refsource_CONFIRM
	http://www.vupen.com/english/advisories/2008/2115	vdb-entryx_refsource_VUPEN
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.vupen.com/english/advisories/2007/0868	vdb-entryx_refsource_VUPEN
	http://h20000.www2.hp.com/bizsupport/TechSupport/…	vendor-advisoryx_refsource_HP
	http://www.php-security.org/MOPB/BONUS-12-2007.html	x_refsource_MISC
	http://www.modsecurity.org/blog/archives/2007/03/…	x_refsource_CONFIRM
	http://secunia.com/advisories/25316	third-party-advisoryx_refsource_SECUNIA
	http://h20000.www2.hp.com/bizsupport/TechSupport/…	vendor-advisoryx_refsource_HP
	http://www.vupen.com/english/advisories/2008/2109…	vdb-entryx_refsource_VUPEN
	http://secunia.com/advisories/24373	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/31087	third-party-advisoryx_refsource_SECUNIA
	http://www.gentoo.org/security/en/glsa/glsa-20070…	vendor-advisoryx_refsource_GENTOO
	http://secunia.com/advisories/31113	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/22831	vdb-entryx_refsource_BID
	http://www.osvdb.org/32778	vdb-entryx_refsource_OSVDB

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T12:50:35.501Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
          },
          {
            "name": "ADV-2008-2115",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/2115"
          },
          {
            "name": "modsecurity-formurlencoded-security-bypass(32872)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
          },
          {
            "name": "ADV-2007-0868",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/0868"
          },
          {
            "name": "SSRT061201",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
          },
          {
            "name": "25316",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/25316"
          },
          {
            "name": "HPSBMA02133",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
          },
          {
            "name": "ADV-2008-2109",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2008/2109/references"
          },
          {
            "name": "24373",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24373"
          },
          {
            "name": "31087",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/31087"
          },
          {
            "name": "GLSA-200705-17",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
          },
          {
            "name": "31113",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/31113"
          },
          {
            "name": "22831",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/22831"
          },
          {
            "name": "32778",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/32778"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-03-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
        },
        {
          "name": "ADV-2008-2115",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/2115"
        },
        {
          "name": "modsecurity-formurlencoded-security-bypass(32872)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
        },
        {
          "name": "ADV-2007-0868",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/0868"
        },
        {
          "name": "SSRT061201",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
        },
        {
          "name": "25316",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/25316"
        },
        {
          "name": "HPSBMA02133",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
        },
        {
          "name": "ADV-2008-2109",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2008/2109/references"
        },
        {
          "name": "24373",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24373"
        },
        {
          "name": "31087",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/31087"
        },
        {
          "name": "GLSA-200705-17",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
        },
        {
          "name": "31113",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/31113"
        },
        {
          "name": "22831",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/22831"
        },
        {
          "name": "32778",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/32778"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-1359",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
            },
            {
              "name": "ADV-2008-2115",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/2115"
            },
            {
              "name": "modsecurity-formurlencoded-security-bypass(32872)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
            },
            {
              "name": "ADV-2007-0868",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/0868"
            },
            {
              "name": "SSRT061201",
              "refsource": "HP",
              "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
            },
            {
              "name": "http://www.php-security.org/MOPB/BONUS-12-2007.html",
              "refsource": "MISC",
              "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
            },
            {
              "name": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html",
              "refsource": "CONFIRM",
              "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
            },
            {
              "name": "25316",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/25316"
            },
            {
              "name": "HPSBMA02133",
              "refsource": "HP",
              "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
            },
            {
              "name": "ADV-2008-2109",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2008/2109/references"
            },
            {
              "name": "24373",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24373"
            },
            {
              "name": "31087",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/31087"
            },
            {
              "name": "GLSA-200705-17",
              "refsource": "GENTOO",
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
            },
            {
              "name": "31113",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/31113"
            },
            {
              "name": "22831",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/22831"
            },
            {
              "name": "32778",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/32778"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-1359",
    "datePublished": "2007-03-08T17:00:00",
    "dateReserved": "2007-03-08T00:00:00",
    "dateUpdated": "2024-08-07T12:50:35.501Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mod_security:mod_security:1.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ADC9F9D2-1B0E-4E51-946F-D5334CF2804D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mod_security:mod_security:1.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE89459D-F526-4694-A662-120FEC6AFCCA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mod_security:mod_security:1.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B9393BE-4BB3-41A6-9B6B-4371C7CB60BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mod_security:mod_security:1.7.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6309864-94CD-4CE5-8F6C-2F9C4B376313\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mod_security:mod_security:1.7.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D95D6A11-D884-4CAC-BD4B-3AB900703589\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mod_security:mod_security:1.9.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EE631D2-1776-4914-9413-688EB2A46570\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mod_security:mod_security:2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1DEF5F66-8BFC-4689-9578-C3389C08EA6D\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python.\"}, {\"lang\": \"es\", \"value\": \"Conflicto de interpretaci\\u00f3n en ModSecurity (mod_security) 2.1.0 y versiones anteriores permite a atacantes remotos evitar reglas de petici\\u00f3n mediante datos POST application/x-www-form-urlencoded que contienen un byte ASCIIZ (0x00), que mod_security trata como un terminador aunque se procesa como datos normales por algunos reconocedores sint\\u00e1cticos (parser) HTTP incluyendo PHP 5.2.0, y posiblemente reconocedores de Perl y Pyton.\"}]",
      "id": "CVE-2007-1359",
      "lastModified": "2024-11-21T00:28:06.453",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2007-03-08T22:19:00.000",
      "references": "[{\"url\": \"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/24373\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/25316\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31087\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31113\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.osvdb.org/32778\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.php-security.org/MOPB/BONUS-12-2007.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/22831\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0868\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2109/references\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2115\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/32872\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/24373\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/25316\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31087\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31113\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.osvdb.org/32778\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.php-security.org/MOPB/BONUS-12-2007.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/22831\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0868\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2109/references\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2115\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/32872\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-1359\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-03-08T22:19:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python.\"},{\"lang\":\"es\",\"value\":\"Conflicto de interpretaci\u00f3n en ModSecurity (mod_security) 2.1.0 y versiones anteriores permite a atacantes remotos evitar reglas de petici\u00f3n mediante datos POST application/x-www-form-urlencoded que contienen un byte ASCIIZ (0x00), que mod_security trata como un terminador aunque se procesa como datos normales por algunos reconocedores sint\u00e1cticos (parser) HTTP incluyendo PHP 5.2.0, y posiblemente reconocedores de Perl y Pyton.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mod_security:mod_security:1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADC9F9D2-1B0E-4E51-946F-D5334CF2804D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mod_security:mod_security:1.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE89459D-F526-4694-A662-120FEC6AFCCA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mod_security:mod_security:1.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B9393BE-4BB3-41A6-9B6B-4371C7CB60BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mod_security:mod_security:1.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6309864-94CD-4CE5-8F6C-2F9C4B376313\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mod_security:mod_security:1.7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D95D6A11-D884-4CAC-BD4B-3AB900703589\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mod_security:mod_security:1.9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EE631D2-1776-4914-9413-688EB2A46570\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mod_security:mod_security:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DEF5F66-8BFC-4689-9578-C3389C08EA6D\"}]}]}],\"references\":[{\"url\":\"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/24373\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/25316\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31087\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31113\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.osvdb.org/32778\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.php-security.org/MOPB/BONUS-12-2007.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/22831\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/0868\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2109/references\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2115\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/32872\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/24373\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/25316\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31087\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31113\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.osvdb.org/32778\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.php-security.org/MOPB/BONUS-12-2007.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/22831\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/0868\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2109/references\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2115\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/32872\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GSD-2007-1359

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-1359

Aliases

CVE-2007-1359

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-1359",
    "description": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python.",
    "id": "GSD-2007-1359"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-1359"
      ],
      "details": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python.",
      "id": "GSD-2007-1359",
      "modified": "2023-12-13T01:21:39.668128Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-1359",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html",
            "refsource": "CONFIRM",
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
          },
          {
            "name": "ADV-2008-2115",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2008/2115"
          },
          {
            "name": "modsecurity-formurlencoded-security-bypass(32872)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
          },
          {
            "name": "ADV-2007-0868",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/0868"
          },
          {
            "name": "SSRT061201",
            "refsource": "HP",
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
          },
          {
            "name": "http://www.php-security.org/MOPB/BONUS-12-2007.html",
            "refsource": "MISC",
            "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
          },
          {
            "name": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html",
            "refsource": "CONFIRM",
            "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
          },
          {
            "name": "25316",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25316"
          },
          {
            "name": "HPSBMA02133",
            "refsource": "HP",
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
          },
          {
            "name": "ADV-2008-2109",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2008/2109/references"
          },
          {
            "name": "24373",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24373"
          },
          {
            "name": "31087",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/31087"
          },
          {
            "name": "GLSA-200705-17",
            "refsource": "GENTOO",
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
          },
          {
            "name": "31113",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/31113"
          },
          {
            "name": "22831",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/22831"
          },
          {
            "name": "32778",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/32778"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:mod_security:mod_security:1.7.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mod_security:mod_security:1.7.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mod_security:mod_security:1.7.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mod_security:mod_security:1.7.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mod_security:mod_security:1.9.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mod_security:mod_security:2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mod_security:mod_security:1.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-1359"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.php-security.org/MOPB/BONUS-12-2007.html",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Vendor Advisory"
              ],
              "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
            },
            {
              "name": "22831",
              "refsource": "BID",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.securityfocus.com/bid/22831"
            },
            {
              "name": "24373",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/24373"
            },
            {
              "name": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
            },
            {
              "name": "32778",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/32778"
            },
            {
              "name": "GLSA-200705-17",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
            },
            {
              "name": "25316",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25316"
            },
            {
              "name": "31113",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/31113"
            },
            {
              "name": "31087",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/31087"
            },
            {
              "name": "ADV-2008-2109",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2008/2109/references"
            },
            {
              "name": "ADV-2007-0868",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/0868"
            },
            {
              "name": "ADV-2008-2115",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2008/2115"
            },
            {
              "name": "SSRT061201",
              "refsource": "HP",
              "tags": [],
              "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
            },
            {
              "name": "modsecurity-formurlencoded-security-bypass(32872)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-07-29T01:30Z",
      "publishedDate": "2007-03-08T22:19Z"
    }
  }
}

CERTA-2008-AVI-367

Vulnerability from certfr_avis - Published: - Updated:

De nombreuses vulnérabilités affectent les produits Oracle. L'exploitation de certaines d'entre elles permet à un utilisateur malveillant d'exécuter du code arbitraire à distance.

Description

Onze vulnérabilités affectent les bases de données Oracle Database. Deux sont exploitables localement. L'exploitation à distance des neuf autres demande une authentification préalable. Un utilisateur malveillant exploitant ces vulnérabilités peut exécuter du code arbitraire à distance ou accéder indûment aux données.

Trois vulnérabilités concernent Oracle TimesTen in-Memory Database. Leur exploitation permet à un utilisateur malveillant de provoquer un déni de service à distance, sans requérir d'authentification.

Neuf vulnérabilités affectent Oracle Application Server. Elle permettent à un utilisateur malveillant non authentifié de provoquer un déni de service à distance, de modifier ou de lire des données de manière illégitime.

Six vulnérabilités de E-businees Suite permettent de porter atteinte à la confidentialité ou à l'intégrité des données.

Deux vulnérabilités affectent Oracle Enterprise Manager. Leur exploitation permet à un utilisateur malveillant de porter atteinte à l'intégrité des données, à distance.

Sept vulnérabilités dans les produits Oracle PeopleSoft permettent à un utilisateur malveillant disposant d'une session valide de provoquer un déni de service à distance, de modifier ou de lire indûment des données.

Sept vulnérabilités sont présentes dans les serveurs Oracle WebLogic, dont quatre sont exploitables à distance sans authentification, une avec authentification et deux localement. Elles permettent à un utilisateur malveillant de provoquer un déni de service à distance, de modifier ou de lire des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	Weblogic	Oracle Application Server 10g ;
Oracle	Weblogic	Oracle Hyperion Performance Suite 8.x ;
Oracle	Weblogic	Oracle E-business Suite 12 et 11i ;
Oracle	Weblogic	Oracle PeopleSoft Entreprise CRM 8.x et 9.x ;
Oracle	Weblogic	Oracle Hyperion Bi Plus 9.x ;
Oracle	Weblogic	Oracle Weblogic Server 6, 7,8,9 et 10.x.
Oracle	Weblogic	Oracle Database 11g, 10g et 9i ;
Oracle	Weblogic	Oracle Enterprise Manager Grid Control 10g ;
Oracle	Weblogic	Oracle PeopleSoft Entreprise PeopleTools 8.x ;
Oracle	Weblogic	Oracle Enterprise Manager Database Control 11 et 10g ;
Oracle	Weblogic	Oracle TimesTen in-Memory Database ;

References

Title

Publication Time

Tags

Bulletin Oracle du 14 juillet 2008	None	vendor-advisory
Bulletin de mise à jour Oracle du 14 juillet 2008 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Oracle Application Server 10g ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Hyperion Performance Suite 8.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle E-business Suite 12 et 11i ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Entreprise CRM 8.x et 9.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Hyperion Bi Plus 9.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Weblogic Server 6, 7,8,9 et 10.x.",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 11g, 10g et 9i ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Enterprise Manager Grid Control 10g ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Entreprise PeopleTools 8.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Enterprise Manager Database Control 11 et 10g ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle TimesTen in-Memory Database ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nOnze vuln\u00e9rabilit\u00e9s affectent les bases de donn\u00e9es Oracle Database. Deux\nsont exploitables localement. L\u0027exploitation \u00e0 distance des neuf autres\ndemande une authentification pr\u00e9alable. Un utilisateur malveillant\nexploitant ces vuln\u00e9rabilit\u00e9s peut ex\u00e9cuter du code arbitraire \u00e0\ndistance ou acc\u00e9der ind\u00fbment aux donn\u00e9es.\n\nTrois vuln\u00e9rabilit\u00e9s concernent Oracle TimesTen in-Memory Database. Leur\nexploitation permet \u00e0 un utilisateur malveillant de provoquer un d\u00e9ni de\nservice \u00e0 distance, sans requ\u00e9rir d\u0027authentification.\n\nNeuf vuln\u00e9rabilit\u00e9s affectent Oracle Application Server. Elle permettent\n\u00e0 un utilisateur malveillant non authentifi\u00e9 de provoquer un d\u00e9ni de\nservice \u00e0 distance, de modifier ou de lire des donn\u00e9es de mani\u00e8re\nill\u00e9gitime.\n\nSix vuln\u00e9rabilit\u00e9s de E-businees Suite permettent de porter atteinte \u00e0\nla confidentialit\u00e9 ou \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n\nDeux vuln\u00e9rabilit\u00e9s affectent Oracle Enterprise Manager. Leur\nexploitation permet \u00e0 un utilisateur malveillant de porter atteinte \u00e0\nl\u0027int\u00e9grit\u00e9 des donn\u00e9es, \u00e0 distance.\n\nSept vuln\u00e9rabilit\u00e9s dans les produits Oracle PeopleSoft permettent \u00e0 un\nutilisateur malveillant disposant d\u0027une session valide de provoquer un\nd\u00e9ni de service \u00e0 distance, de modifier ou de lire ind\u00fbment des donn\u00e9es.\n\nSept vuln\u00e9rabilit\u00e9s sont pr\u00e9sentes dans les serveurs Oracle WebLogic,\ndont quatre sont exploitables \u00e0 distance sans authentification, une avec\nauthentification et deux localement. Elles permettent \u00e0 un utilisateur\nmalveillant de provoquer un d\u00e9ni de service \u00e0 distance, de modifier ou\nde lire des donn\u00e9es.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2008-2621",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2621"
    },
    {
      "name": "CVE-2008-2592",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2592"
    },
    {
      "name": "CVE-2008-2577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2577"
    },
    {
      "name": "CVE-2008-2608",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2608"
    },
    {
      "name": "CVE-2008-2607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2607"
    },
    {
      "name": "CVE-2008-2597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2597"
    },
    {
      "name": "CVE-2008-2612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2612"
    },
    {
      "name": "CVE-2008-2606",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2606"
    },
    {
      "name": "CVE-2008-2617",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2617"
    },
    {
      "name": "CVE-2008-2605",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2605"
    },
    {
      "name": "CVE-2008-2616",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2616"
    },
    {
      "name": "CVE-2008-2578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2578"
    },
    {
      "name": "CVE-2008-2586",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2586"
    },
    {
      "name": "CVE-2008-2602",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2602"
    },
    {
      "name": "CVE-2008-2598",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2598"
    },
    {
      "name": "CVE-2008-2596",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2596"
    },
    {
      "name": "CVE-2008-2590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2590"
    },
    {
      "name": "CVE-2008-2582",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2582"
    },
    {
      "name": "CVE-2008-2610",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2610"
    },
    {
      "name": "CVE-2008-2587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2587"
    },
    {
      "name": "CVE-2008-2583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2583"
    },
    {
      "name": "CVE-2008-2594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2594"
    },
    {
      "name": "CVE-2008-2611",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2611"
    },
    {
      "name": "CVE-2008-2609",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2609"
    },
    {
      "name": "CVE-2008-2595",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2595"
    },
    {
      "name": "CVE-2008-2615",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2615"
    },
    {
      "name": "CVE-2008-2580",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2580"
    },
    {
      "name": "CVE-2008-2614",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2614"
    },
    {
      "name": "CVE-2008-2593",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2593"
    },
    {
      "name": "CVE-2008-2581",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2581"
    },
    {
      "name": "CVE-2008-2613",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2613"
    },
    {
      "name": "CVE-2008-2585",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2585"
    },
    {
      "name": "CVE-2008-2600",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2600"
    },
    {
      "name": "CVE-2008-2604",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2604"
    },
    {
      "name": "CVE-2008-2576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2576"
    },
    {
      "name": "CVE-2008-2620",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2620"
    },
    {
      "name": "CVE-2008-2588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2588"
    },
    {
      "name": "CVE-2007-1359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1359"
    },
    {
      "name": "CVE-2008-2584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2584"
    },
    {
      "name": "CVE-2008-2603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2603"
    },
    {
      "name": "CVE-2008-2618",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2618"
    },
    {
      "name": "CVE-2008-2589",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2589"
    },
    {
      "name": "CVE-2008-2599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2599"
    },
    {
      "name": "CVE-2008-2591",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2591"
    },
    {
      "name": "CVE-2008-2601",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2601"
    },
    {
      "name": "CVE-2008-2622",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2622"
    },
    {
      "name": "CVE-2008-2579",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2579"
    }
  ],
  "links": [
    {
      "title": "Bulletin de mise \u00e0 jour Oracle du 14 juillet 2008 :",
      "url": "http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujul2008.html"
    }
  ],
  "reference": "CERTA-2008-AVI-367",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2008-07-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De nombreuses vuln\u00e9rabilit\u00e9s affectent les produits \u003cspan\nclass=\"textit\"\u003eOracle\u003c/span\u003e. L\u0027exploitation de certaines d\u0027entre elles\npermet \u00e0 un utilisateur malveillant d\u0027ex\u00e9cuter du code arbitraire \u00e0\ndistance.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle et Weblogic",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin Oracle du 14 juillet 2008",
      "url": null
    }
  ]
}

CERTA-2008-AVI-367

Vulnerability from certfr_avis - Published: - Updated:

De nombreuses vulnérabilités affectent les produits Oracle. L'exploitation de certaines d'entre elles permet à un utilisateur malveillant d'exécuter du code arbitraire à distance.

Description

Six vulnérabilités de E-businees Suite permettent de porter atteinte à la confidentialité ou à l'intégrité des données.

Deux vulnérabilités affectent Oracle Enterprise Manager. Leur exploitation permet à un utilisateur malveillant de porter atteinte à l'intégrité des données, à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	Weblogic	Oracle Application Server 10g ;
Oracle	Weblogic	Oracle Hyperion Performance Suite 8.x ;
Oracle	Weblogic	Oracle E-business Suite 12 et 11i ;
Oracle	Weblogic	Oracle PeopleSoft Entreprise CRM 8.x et 9.x ;
Oracle	Weblogic	Oracle Hyperion Bi Plus 9.x ;
Oracle	Weblogic	Oracle Weblogic Server 6, 7,8,9 et 10.x.
Oracle	Weblogic	Oracle Database 11g, 10g et 9i ;
Oracle	Weblogic	Oracle Enterprise Manager Grid Control 10g ;
Oracle	Weblogic	Oracle PeopleSoft Entreprise PeopleTools 8.x ;
Oracle	Weblogic	Oracle Enterprise Manager Database Control 11 et 10g ;
Oracle	Weblogic	Oracle TimesTen in-Memory Database ;

References

Title

Publication Time

Tags

Bulletin Oracle du 14 juillet 2008	None	vendor-advisory
Bulletin de mise à jour Oracle du 14 juillet 2008 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Oracle Application Server 10g ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Hyperion Performance Suite 8.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle E-business Suite 12 et 11i ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Entreprise CRM 8.x et 9.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Hyperion Bi Plus 9.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Weblogic Server 6, 7,8,9 et 10.x.",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 11g, 10g et 9i ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Enterprise Manager Grid Control 10g ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Entreprise PeopleTools 8.x ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Enterprise Manager Database Control 11 et 10g ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle TimesTen in-Memory Database ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nOnze vuln\u00e9rabilit\u00e9s affectent les bases de donn\u00e9es Oracle Database. Deux\nsont exploitables localement. L\u0027exploitation \u00e0 distance des neuf autres\ndemande une authentification pr\u00e9alable. Un utilisateur malveillant\nexploitant ces vuln\u00e9rabilit\u00e9s peut ex\u00e9cuter du code arbitraire \u00e0\ndistance ou acc\u00e9der ind\u00fbment aux donn\u00e9es.\n\nTrois vuln\u00e9rabilit\u00e9s concernent Oracle TimesTen in-Memory Database. Leur\nexploitation permet \u00e0 un utilisateur malveillant de provoquer un d\u00e9ni de\nservice \u00e0 distance, sans requ\u00e9rir d\u0027authentification.\n\nNeuf vuln\u00e9rabilit\u00e9s affectent Oracle Application Server. Elle permettent\n\u00e0 un utilisateur malveillant non authentifi\u00e9 de provoquer un d\u00e9ni de\nservice \u00e0 distance, de modifier ou de lire des donn\u00e9es de mani\u00e8re\nill\u00e9gitime.\n\nSix vuln\u00e9rabilit\u00e9s de E-businees Suite permettent de porter atteinte \u00e0\nla confidentialit\u00e9 ou \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n\nDeux vuln\u00e9rabilit\u00e9s affectent Oracle Enterprise Manager. Leur\nexploitation permet \u00e0 un utilisateur malveillant de porter atteinte \u00e0\nl\u0027int\u00e9grit\u00e9 des donn\u00e9es, \u00e0 distance.\n\nSept vuln\u00e9rabilit\u00e9s dans les produits Oracle PeopleSoft permettent \u00e0 un\nutilisateur malveillant disposant d\u0027une session valide de provoquer un\nd\u00e9ni de service \u00e0 distance, de modifier ou de lire ind\u00fbment des donn\u00e9es.\n\nSept vuln\u00e9rabilit\u00e9s sont pr\u00e9sentes dans les serveurs Oracle WebLogic,\ndont quatre sont exploitables \u00e0 distance sans authentification, une avec\nauthentification et deux localement. Elles permettent \u00e0 un utilisateur\nmalveillant de provoquer un d\u00e9ni de service \u00e0 distance, de modifier ou\nde lire des donn\u00e9es.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2008-2621",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2621"
    },
    {
      "name": "CVE-2008-2592",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2592"
    },
    {
      "name": "CVE-2008-2577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2577"
    },
    {
      "name": "CVE-2008-2608",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2608"
    },
    {
      "name": "CVE-2008-2607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2607"
    },
    {
      "name": "CVE-2008-2597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2597"
    },
    {
      "name": "CVE-2008-2612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2612"
    },
    {
      "name": "CVE-2008-2606",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2606"
    },
    {
      "name": "CVE-2008-2617",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2617"
    },
    {
      "name": "CVE-2008-2605",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2605"
    },
    {
      "name": "CVE-2008-2616",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2616"
    },
    {
      "name": "CVE-2008-2578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2578"
    },
    {
      "name": "CVE-2008-2586",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2586"
    },
    {
      "name": "CVE-2008-2602",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2602"
    },
    {
      "name": "CVE-2008-2598",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2598"
    },
    {
      "name": "CVE-2008-2596",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2596"
    },
    {
      "name": "CVE-2008-2590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2590"
    },
    {
      "name": "CVE-2008-2582",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2582"
    },
    {
      "name": "CVE-2008-2610",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2610"
    },
    {
      "name": "CVE-2008-2587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2587"
    },
    {
      "name": "CVE-2008-2583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2583"
    },
    {
      "name": "CVE-2008-2594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2594"
    },
    {
      "name": "CVE-2008-2611",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2611"
    },
    {
      "name": "CVE-2008-2609",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2609"
    },
    {
      "name": "CVE-2008-2595",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2595"
    },
    {
      "name": "CVE-2008-2615",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2615"
    },
    {
      "name": "CVE-2008-2580",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2580"
    },
    {
      "name": "CVE-2008-2614",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2614"
    },
    {
      "name": "CVE-2008-2593",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2593"
    },
    {
      "name": "CVE-2008-2581",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2581"
    },
    {
      "name": "CVE-2008-2613",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2613"
    },
    {
      "name": "CVE-2008-2585",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2585"
    },
    {
      "name": "CVE-2008-2600",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2600"
    },
    {
      "name": "CVE-2008-2604",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2604"
    },
    {
      "name": "CVE-2008-2576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2576"
    },
    {
      "name": "CVE-2008-2620",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2620"
    },
    {
      "name": "CVE-2008-2588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2588"
    },
    {
      "name": "CVE-2007-1359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1359"
    },
    {
      "name": "CVE-2008-2584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2584"
    },
    {
      "name": "CVE-2008-2603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2603"
    },
    {
      "name": "CVE-2008-2618",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2618"
    },
    {
      "name": "CVE-2008-2589",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2589"
    },
    {
      "name": "CVE-2008-2599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2599"
    },
    {
      "name": "CVE-2008-2591",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2591"
    },
    {
      "name": "CVE-2008-2601",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2601"
    },
    {
      "name": "CVE-2008-2622",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2622"
    },
    {
      "name": "CVE-2008-2579",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2579"
    }
  ],
  "links": [
    {
      "title": "Bulletin de mise \u00e0 jour Oracle du 14 juillet 2008 :",
      "url": "http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujul2008.html"
    }
  ],
  "reference": "CERTA-2008-AVI-367",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2008-07-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De nombreuses vuln\u00e9rabilit\u00e9s affectent les produits \u003cspan\nclass=\"textit\"\u003eOracle\u003c/span\u003e. L\u0027exploitation de certaines d\u0027entre elles\npermet \u00e0 un utilisateur malveillant d\u0027ex\u00e9cuter du code arbitraire \u00e0\ndistance.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Oracle et Weblogic",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin Oracle du 14 juillet 2008",
      "url": null
    }
  ]
}

FKIE_CVE-2007-1359

Vulnerability from fkie_nvd - Published: 2007-03-08 22:19 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143
cve@mitre.org	http://secunia.com/advisories/24373	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/25316
cve@mitre.org	http://secunia.com/advisories/31087
cve@mitre.org	http://secunia.com/advisories/31113
cve@mitre.org	http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml
cve@mitre.org	http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html
cve@mitre.org	http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html
cve@mitre.org	http://www.osvdb.org/32778
cve@mitre.org	http://www.php-security.org/MOPB/BONUS-12-2007.html	Exploit, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/22831	Vendor Advisory
cve@mitre.org	http://www.vupen.com/english/advisories/2007/0868
cve@mitre.org	http://www.vupen.com/english/advisories/2008/2109/references
cve@mitre.org	http://www.vupen.com/english/advisories/2008/2115
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/32872
af854a3a-2127-422b-91ae-364da2661108	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24373	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25316
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/31087
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/31113
af854a3a-2127-422b-91ae-364da2661108	http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/32778
af854a3a-2127-422b-91ae-364da2661108	http://www.php-security.org/MOPB/BONUS-12-2007.html	Exploit, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/22831	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/0868
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/2109/references
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2008/2115
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/32872

Impacted products

Vendor	Product	Version
mod_security	mod_security	1.7
mod_security	mod_security	1.7.1
mod_security	mod_security	1.7.2
mod_security	mod_security	1.7.4
mod_security	mod_security	1.7.5
mod_security	mod_security	1.9.4
mod_security	mod_security	2.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mod_security:mod_security:1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "ADC9F9D2-1B0E-4E51-946F-D5334CF2804D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mod_security:mod_security:1.7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE89459D-F526-4694-A662-120FEC6AFCCA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mod_security:mod_security:1.7.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B9393BE-4BB3-41A6-9B6B-4371C7CB60BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mod_security:mod_security:1.7.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6309864-94CD-4CE5-8F6C-2F9C4B376313",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mod_security:mod_security:1.7.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "D95D6A11-D884-4CAC-BD4B-3AB900703589",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mod_security:mod_security:1.9.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9EE631D2-1776-4914-9413-688EB2A46570",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mod_security:mod_security:2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1DEF5F66-8BFC-4689-9578-C3389C08EA6D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python."
    },
    {
      "lang": "es",
      "value": "Conflicto de interpretaci\u00f3n en ModSecurity (mod_security) 2.1.0 y versiones anteriores permite a atacantes remotos evitar reglas de petici\u00f3n mediante datos POST application/x-www-form-urlencoded que contienen un byte ASCIIZ (0x00), que mod_security trata como un terminador aunque se procesa como datos normales por algunos reconocedores sint\u00e1cticos (parser) HTTP incluyendo PHP 5.2.0, y posiblemente reconocedores de Perl y Pyton."
    }
  ],
  "id": "CVE-2007-1359",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-03-08T22:19:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/24373"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25316"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/31087"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/31113"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/32778"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Vendor Advisory"
      ],
      "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/22831"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/0868"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/2109/references"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/2115"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/24373"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25316"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/31087"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/31113"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/32778"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Vendor Advisory"
      ],
      "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/22831"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/0868"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/2109/references"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/2115"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-J86F-XC6J-VF9F

Vulnerability from github – Published: 2022-05-01 17:52 – Updated: 2022-05-01 17:52

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-1359"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-03-08T22:19:00Z",
    "severity": "MODERATE"
  },
  "details": "Interpretation conflict in ModSecurity (mod_security) 2.1.0 and earlier allows remote attackers to bypass request rules via application/x-www-form-urlencoded POST data that contains an ASCIIZ (0x00) byte, which mod_security treats as a terminator even though it is still processed as normal data by some HTTP parsers including PHP 5.2.0, and possibly parsers in Perl, and Python.",
  "id": "GHSA-j86f-xc6j-vf9f",
  "modified": "2022-05-01T17:52:51Z",
  "published": "2022-05-01T17:52:51Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1359"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32872"
    },
    {
      "type": "WEB",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24373"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25316"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/31087"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/31113"
    },
    {
      "type": "WEB",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-17.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.modsecurity.org/blog/archives/2007/03/modsecurity_asc.html"
    },
    {
      "type": "WEB",
      "url": "http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/32778"
    },
    {
      "type": "WEB",
      "url": "http://www.php-security.org/MOPB/BONUS-12-2007.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/22831"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/0868"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2008/2109/references"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2008/2115"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-1359 (GCVE-0-2007-1359)

GSD-2007-1359

CERTA-2008-AVI-367

Description

Solution

CERTA-2008-AVI-367

Description

Solution

FKIE_CVE-2007-1359

GHSA-J86F-XC6J-VF9F

Tags

Sightings

Nomenclature