PT-2009-2705 · Oracle · Oracle Application Object Library+5

Published

2009-09-14

Updated

2012-10-23

CVE-2008-7238

CVSS v2.0

6.0

Medium

Vector

AV:N/AC:M/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Oracle E-Business Suite version 12.0.3

Description The issue affects confidentiality and integrity, and is related to several components, including the Mobile Application Server, Oracle Applications Framework, CRM Technical Foundation, Oracle Application Object Library, and Oracle Applications Technology Stack. Local users and remote attackers, including remote authenticated users, can exploit the issue via unknown vectors.

Recommendations For Oracle E-Business Suite version 12.0.3, update to a version that includes fixes for the vulnerabilities in the Mobile Application Server, Oracle Applications Framework, CRM Technical Foundation, Oracle Application Object Library, and Oracle Applications Technology Stack components.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-7238

Affected Products

Crm Technical Foundation

Mobile Application Server

Oracle Application Object Library

Oracle Applications Framework

Oracle Applications Technology Stack

Oracle E-Business Suite

PT-2009-2705 · Oracle · Oracle Application Object Library+5

CVE-2008-7238

Related Identifiers

Affected Products

References · 15