Vulnerability CVE-2016-0492

Vulnerability CVE-2016-0492

Published: 2016-01-20 Modified: 2016-01-21

Description:

	Topic	Author	Date
High	Oracle ATS Arbitrary File Upload	wvu	25.05.2016

Type:

(Permissions, Privileges, and Access Controls)

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.4/10	4.9/10	10/10

Affected software
Oracle -> Application testing suite

http://packetstormsecurity.com/files/137175/Oracle-ATS-Arbitrary-File-Upload.html

http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

http://www.rapid7.com/db/modules/exploit/multi/http/oracle_ats_file_upload

http://www.securityfocus.com/bid/81158

http://www.securitytracker.com/id/1034734

http://www.zerodayinitiative.com/advisories/ZDI-16-042

https://www.exploit-db.com/exploits/39691/

https://www.exploit-db.com/exploits/39852/