PT-2011-2685 · Oracle · Oracle Jd Edwards Enterpriseone Tools+1

Published

2011-04-20

Updated

2012-08-03

CVE-2011-0836

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Oracle JD Edwards EnterpriseOne Tools versions 8.9 GA through 8.98.4.1 Oracle JD Edwards OneWorld Tools versions prior to 24.1.3

Description The issue allows remote authenticated users to affect integrity, related to Web Runtime SEC.

Recommendations For Oracle JD Edwards EnterpriseOne Tools versions 8.9 GA through 8.98.4.1, update to a version later than 8.98.4.1. For Oracle JD Edwards OneWorld Tools versions prior to 24.1.3, update to version 24.1.3 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2011-0836

Affected Products

Oracle Jd Edwards Enterpriseone Tools

Oracle Jd Edwards Oneworld Tools

PT-2011-2685 · Oracle · Oracle Jd Edwards Enterpriseone Tools+1

CVE-2011-0836

Related Identifiers

Affected Products

References · 7