Signature Detail

Short Name	APP:ORACLE:VIRTUAL-AGENT-CMDINJ
Severity	High
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	Oracle Virtual Server Agent Command Injection
Release Date	2011/07/21
Update Number	1959
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: Oracle Virtual Server Agent Command Injection

This signature detects attempts to exploit a known vulnerability in Oracle VM. The vulnerability is due to an input validation error in proxy parameters of utl_test_url function in Oracle VM Agent when processing XML-RPC requests. A remote authenticated attacker can exploit this vulnerabilities to inject and execute arbitrary commands.

Extended Description

Oracle VM is prone to a remote vulnerability in OracleVM. The vulnerability can be exploited over the 'xmlrpc, tcp/ip' protocol. The 'ovs-agent' sub component is affected. This vulnerability affects the following supported versions: 2.2.1

Affected Products

Oracle Oracle VM 2.2.1

References

BugTraq: 44047
BugTraq: 44031
CVE: CVE-2010-3585
CVE: CVE-2010-3582

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Oracle Virtual Server Agent Command Injection

Extended Description

Affected Products

References