Skip to content

auxiliary scanners oracle_dav_bypass

Jump to bottom Edit New page
cktricky edited this page Apr 26, 2011 · 6 revisions

Author(s):

CG [carnal0wnage]

Description:

This module sends tests for the Oracle Application Server 10G ORA DAV Basic Authentication Bypass Vulnerability)

References:

http://carnal0wnage.attackresearch.com
http://www.juniper.net/security/auto/vulnerabilities/vuln29119.html
CVE 2008-2138

Module Options:

PROXYA                                                           false      Proxy IP Address
PROXYP                                                           false      Proxy Port Number
RURL        http://www.example.com/test.php                      true       Target address
UA          Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)   true       The HTTP User-Agent sent in the request

Options Explained (Module Specific):

UA -- Modify this if you'd like to leverage a different User-Agent.

Real world example:

We'd like to test an Oracle 10g application server hosted at www.example.com for CVE 2008-2138 (DAV Basic Auth Bypass Vuln). The UserAgent isn't important to us so we will leave it as is.

set RURL http://www.example.com
run
Add a custom footer
Add a custom sidebar
Clone this wiki locally