PT-2006-1364 · Oracle · Oracle Database Server+3
Published
2006-01-18
·
Updated
2017-07-20
·
CVE-2006-0290
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Oracle Database Server version 9.2.0.7
Oracle Application Server versions 9.0.4.2 and 10.1.2.1
Oracle Collaboration Suite Release 2 version 9.0.4.2
Oracle E-Business Suite and Applications version 11.5.10
Description
The issue has an unspecified impact and attack vectors in the Oracle Workflow Cartridge component.
Recommendations
For Oracle Database Server version 9.2.0.7, update to a version that addresses the issue in the Oracle Workflow Cartridge component.
For Oracle Application Server versions 9.0.4.2 and 10.1.2.1, update to a version that addresses the issue in the Oracle Workflow Cartridge component.
For Oracle Collaboration Suite Release 2 version 9.0.4.2, update to a version that addresses the issue in the Oracle Workflow Cartridge component.
For Oracle E-Business Suite and Applications version 11.5.10, update to a version that addresses the issue in the Oracle Workflow Cartridge component.
As a temporary workaround, consider restricting access to the Oracle Workflow Cartridge component until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Oracle Application Server
Oracle Collaboration Suite
Oracle Database Server
Oracle E-Business Suite