Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The AjaxControl component of Oracle WebCenter Interaction Portal 10.3.3 does not validate the names of pages when processing page rename requests. Pages can be renamed to include characters unsupported for URIs by the web server hosting the WCI Portal software (such as IIS). Renaming pages to include unsupported characters, such as 0x7f, prevents these pages from being accessed over the web server, causing a Denial of Service (DoS) to the page. NOTE: this CVE is assigned by MITRE and isn't validated by Oracle because Oracle WebCenter Interaction Portal is out of support.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Oracle WebCenter Interaction Portal AjaxControl组件安全漏洞
Vulnerability Description
Oracle WebCenter Interaction是美国甲骨文(Oracle)公司的一套用于创建企业门户、协作社区、组合应用程序和社交应用程序的套件。Oracle WebCenter Interaction Portal是其中的一个管理界面。AjaxControl是其中的一个Ajax控件组件。 Oracle WebCenter Interaction Portal 10.3.3版本中的AjaxControl组件存在安全漏洞,该漏洞源于在处理页面重命名请求时,程序没有验证页面的名称。攻击者可利用该漏洞
CVSS Information
N/A
Vulnerability Type
N/A