PT-2011-1538 · Oracle · Peoplesoft Enterprise Peopletools+2

Published

2011-01-19

Updated

2017-08-17

CVE-2010-4434

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Oracle PeopleSoft and JDEdwards Suite versions 8.50.0 through 8.50.14 Oracle PeopleSoft and JDEdwards Suite versions 8.51.0 through 8.51.04

Description The issue affects confidentiality and can be exploited by remote authenticated users via unknown vectors related to Portal in the PeopleSoft Enterprise PeopleTools component.

Recommendations For versions 8.50.0 through 8.50.14, update to a version outside of this range to resolve the issue. For versions 8.51.0 through 8.51.04, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the Portal component in the PeopleSoft Enterprise PeopleTools until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2010-4434

Affected Products

Jdedwards Suite

Peoplesoft

Peoplesoft Enterprise Peopletools

PT-2011-1538 · Oracle · Peoplesoft Enterprise Peopletools+2

CVE-2010-4434

Related Identifiers

Affected Products

References · 8