Oracle iPlanet Web Server | ¶à¸öÇå¾²Îó²îͨ¸æ

Ðû²¼Ê±¼ä 2020-05-12

0x00 Îó²î¸ÅÊö



²úÆ·

CVE ID

Àà ÐÍ

Îó²îÆ·¼¶

Ô¶³ÌʹÓÃ

Ó°Ïì¹æÄ£

Oracle iPlanet Web Server

CVE-2020-9314

I

ÖÐΣ

ÊÇ

Oracle iPlanet Web Server 7.0.x°æ±¾

CVE-2020-9315

ÖÐΣ

ÊÇ


0x01 Îó²îÏêÇé


×ðÁú¿­Ê±¡¤(ÖйúÇø)ÈËÉú¾ÍÊDz«!


Oracle iPlanet Web Server£¨OiWS£©ÊÇÃÀ¹ú¼×¹ÇÎÄ£¨Oracle£©¹«Ë¾µÄÒ»¿îÖ÷ÒªÓÃÓÚÖÐÐͺʹóÐÍÓªÒµÓ¦ÓóÌÐòµÄWeb·þÎñÆ÷¡£

×î½ü£¬Ñо¿Ö°Ô±·¢Ã÷ÁËÁ½¸öÓ°ÏìOracle iPlanet Web ServerµÄÇå¾²Îó²î£¬¸ú×Ùµ½µÄÎó²îΪCVE-2020-9314ºÍCVE-2020-9315£¬ËüÃÇ¿ÉÄܵ¼ÖÂ×¢Èë¹¥»÷ºÍÃô¸ÐÊý¾Ýй¶¡£

CVE-2020-9314ÊÇOracle iPlanet Web ServerµÄWebÖÎÀí¿ØÖÆ̨Öб£´æµÄÒ»¸ö×¢ÈëÎó²î¡£ÖÎÀí¿ØÖÆ̨Öеġ°productNameSrc¡±²ÎÊýÔÊÐí×¢ÈëÍⲿӳÏñ¡£µ±Óë¡°productNameHeight¡±ºÍ¡°productNameWidth¡±²ÎÊýÍŽáʹÓÃʱ£¬¿ÉÒÔ½«ÍⲿͼÏñ×¢ÈëÕ¾µãÒÔÀûÓÚÍøÂç´¹ÂÚ¡£ÕâÊÇÓÉÓÚCVE-2012-0516µÄÐÞ²¹³ÌÐò²»ÍêÕûËùÖ¡£½ÏÔçµÄÐÞ¸´³ÌÐòÌí¼ÓÁËÕë¶ÔXSSÎÊÌâµÄÑéÖ¤£¬µ«¶ÔÈ·±£Ã»ÓмÓÔØÍⲿӳÏñδÌí¼ÓÑéÖ¤¡£

Îó²îÑéÖ¤¿ÉʵÑéÒÔÏÂÁ´½Ó£º

http://%5Btarget%5D/admingui/version/Version?&productNameSrc=http://www.example.com/test.jpg&productNameHeight=500&productNameWidth=500

http://%5Btarget%5D/admingui/version/Masthead.jsp?productNameSrc=http://www.example.com/test.jpg&productNameHeight=500&productNameWidth=500

CVE-2020-9315ÊÇOracle iPlanet Web ServerµÄWebÖÎÀí¿ØÖÆ̨Öб£´æµÄÒ»¸öÇå¾²Îó²î¡£¸ÃÎó²îʹµÃÎÞÐèÉí·ÝÑéÖ¤¼´¿É´Ó¿ØÖÆ̨ÖеÄÈκÎÒ³Ãæ¶ÁÊØÐÅÏ¢¡£Õâ¿ÉÄܵ¼ÖÂÓйطþÎñÆ÷µÄÉèÖÃÐÅÏ¢£¨°üÀ¨¼ÓÃÜÃÜÔ¿£¬JVMÉèÖúÍÆäËûÊý¾Ý£©µÄÃô¸ÐÊý¾Ýй¶¡ £¿ÉÒÔͨ¹ýÌæ»»ÖÎÀí¿ØÖÆ̨ÖÐÈκÎÒ³ÃæµÄÈκÎURLÀ´Íê³É£¬ÈçÏÂËùʾ£º

http://%5Btarget%5D/admingui/admingui/*

http://%5Btarget%5D/admingui/°æ±¾/*

Îó²îÑéÖ¤¿ÉʵÑéÒÔÏÂÁ´½Ó£º

http://%5Btarget%5D/admingui/version/

http://%5Btarget%5D/admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.Tabhref=2


0x02 ´¦Öóͷ£½¨Òé


ÓÉÓÚOracle²»ÔÙÖ§³ÖOracle iPlanet Web Server 7.0.x£¬ÒÔÊDz»ÍýÏëÐû²¼Çå¾²²¹¶¡³ÌÐò¡£

ÔÝʱ²½·¥£º

×îа汾µÄOracle GlassfishºÍEclipse GlassfishÓëiPlanet¹²ÏíͨÓôúÂ룬ÒÑͨ¹ý²âÊÔ£¬Ã»ÓÐÎó²î£¬½¨ÒéÊÜÓ°ÏìÓû§ÏÂÔØʹÓá£

ÏÞÖÆ´ÓInternetµ½Oracle iPlanet Web ServerµÄWebÖÎÀí¿ØÖÆ̨µÄ»á¼û£¬Ö»ÔÊÔÊÐíÐÅip»á¼û¡£


0x03 Ïà¹ØÐÂÎÅ


https://securityaffairs.co/wordpress/103055/hacking/oracles-iplanet-web-server-flaws.html?utm_source=rss&utm_medium=rss&utm_campaign=oracles-iplanet-web-server-flaws


0x04 ²Î¿¼Á´½Ó


https://wwws.nightwatchcybersecurity.com/2020/05/10/two-vulnerabilities-in-oracles-iplanet-web-server-cve-2020-9315-and-cve-2020-9314/

https://www.oracle.com/us/assets/lifetime-support-middleware-069163.pdf


0x05 ʱ¼äÏß


2020-05-12 VSRCÐû²¼Îó²îͨ¸æ


×ðÁú¿­Ê±¡¤(ÖйúÇø)ÈËÉú¾ÍÊDz«!