Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Oracle EBS Credentials Disclosure

By kannthu

Medium
Vidoc logoVidoc Module
#config#exposure#oracle
Description

What is the "Oracle EBS Credentials Disclosure?"

The "Oracle EBS Credentials Disclosure" module is designed to detect the exposure of Oracle E-Business Suite (EBS) credentials. Oracle EBS is a popular enterprise resource planning (ERP) software used by organizations for managing various business processes. This module focuses on identifying misconfigurations or vulnerabilities that could potentially lead to the disclosure of sensitive credentials.

This module has a medium severity level, indicating that if the vulnerability is exploited, it could have a significant impact on the security of the Oracle EBS system.

This module was authored by dhiyaneshDk.

Impact

If the Oracle EBS credentials are disclosed, it can provide unauthorized individuals with access to sensitive information and potentially compromise the security of the entire Oracle EBS system. This can lead to unauthorized data access, data manipulation, or even complete system compromise.

How the module works?

The "Oracle EBS Credentials Disclosure" module works by sending HTTP requests to specific endpoints within the Oracle EBS system and then analyzing the responses for specific patterns or conditions. It checks for the presence of the "password=" keyword and the "" tag in the response body. Additionally, it verifies that the response header contains the "text/xml" content type and that the HTTP status code is 200.

By matching these conditions, the module can determine if the Oracle EBS system is misconfigured or vulnerable to credential disclosure. It does not provide the actual JSON definitions of the module, but rather focuses on the technical aspects of its operation.

Here is an example of an HTTP request that the module may send:

GET /OA_HTML/jtfwrepo.xml

The module then analyzes the response to check for the presence of the specified keywords and conditions.

It is important to note that this module is designed to detect the presence of the vulnerability, but it does not perform any actions to fix or mitigate the issue. It serves as a tool for identifying potential security risks in Oracle EBS systems.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/OA_HTML/jtfwrepo.xm...
Matching conditions
word: password=, <PUSR_LIST>and
word: text/xmland
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability