Get a Pentest and security assessment of your IT network.

News

Authentication Bypass In Oracle Access Manager

A padding oracle vulnerability in Oracle Access Manager (OAM) allows an attacker to decrypt and encrypt certain cryptographic messages. An attacker could craft arbitrary authentication tokens to bypass authentication tokens and impersonate any user account. This security vulnerability completely breaks the main functionality of the OAM product. The security patches from the Oracle CPU (April 2018) have to be applied immediately! An attacker can abuse this vulnerability to log in to any resource protected by the. OAM using any. user account, even administrative accounts!”]

Source: https://sec-consult.com/vulnerability-lab/advisory/authentication-bypass-in-oracle-access-manager/

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Terrorism WEEKLY DIGESTTHREAT INTELLIGENCE FEED 23rd Jul 2nd

News

Attacker.NET : Server Management & Security, Website Malware Removal & Website Security