Description
CRLF injection vulnerability in webapp/jsp/calendar.jsp in Oracle Portal 10g and earlier, including 9.0.2, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the enc parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by putosoft softputo · textwebappsjsp
https://www.exploit-db.com/exploits/29301
References (9)
Core 9
Core References
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/2057
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/454965/100/0/threaded
Mailing List mailing-list
x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=116664018702238&w=2
Mailing List mailing-list
x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=116666155824901&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23461
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/455106/100/0/threaded
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/5124
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/21686
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/454945/100/0/threaded
Scores
EPSS
0.3761
EPSS Percentile
97.2%
Details
Status
published
Products (2)
oracle/application_server_portal
9.0.2
oracle/application_server_portal
10g
Published
Dec 22, 2006
Tracked Since
Feb 18, 2026