Services
Oracle Audit / Hardening
Security Training
Consulting

Information
Oracle Security Blog
Published AlertsRSS Published Alerts
Upcoming AlertsRSS Published Alerts
Patch Information
Whitepaper
Presentations
Oracle Fact Sheets
Exploits
Tutorials
Videos
Scripts

News & Events
Events
News

Company
Contact
People
Partner
Impressum
Sitemap


Search



Search Red-Database-Security
Webcache Client Requests bypasses OHS mod_access Restrictions

Name Webcache Client Requests bypasses OHS mod_access Restrictions
Systems Affected Oracle Application Server OHS 1.0.2 - 10.x
Severity Low Risk
Category Bypass protected URLs via Webcache
Vendor URL http://www.oracle.com/
Author Alexander Kornbrust (ak at red-database-security.com)
Date 11 May 2005 (V 1.02)
CAN-Number CAN-2005-1383


Details
It is possible to access Apache protected URLs by using webcache.

Patch Information
Oracle fixed this issue by introducing the parameter "UseWebcacheIP" to the Oracle HTTP Server(OHS), but never informed their customers about this issue with an security alert.

Workaround
Add "UseWebCacheIP ON" to httpd.conf.

Testcase
(Port 7778 = Webcache, Port 7779 = OHS)

The following URLs are NOT protected if you access them via Webcache:
http://server01:7778/dmsoc4j/AggreSpy?format=metrictable&nountype=ohs_child&orderby=Name
http:// server01:7778/server-status
http:// server01:7778/dms0

The following URLs are protected:
http://server01:7779/dmsoc4j/AggreSpy?format=metrictable&nountype=ohs_child&orderby=Name
http:// server01:7779/server-status
http:// server01:7779/dms0

History
01-oct-2003 Oracle secalert was informed
01-oct-2003 Bug confirmed
26-apr-2005 Red-Database-Security published this advisory
11-may-2005 CAN added




2005 by Red-Database-Security GmbH - last update 03-nov-2005

Oracle Webcache


Oracle Webcache is part of the Oracle Application Server aka OAS aka IAS

The Oracle Web Cache can be used to cache static and dynamically generated web pages. The cache shouild be your first point for accepting user requests from clients using web browsers.

The Web Cache also provides load balancing and can route non-cached requests to a set of web servers. This privides protection when some of the servers are overloaded or become inaccessable.