PT-2011-2730 · Oracle · Oracle Bpel Process Manager

Published

2011-07-20

Updated

2011-10-05

CVE-2011-0884

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Oracle BPEL Process Manager versions 11.1.1.3.0 through 11.1.1.5.0

Description The issue affects the availability of the system, and it is related to the BPEL Console. It can be exploited by remote authenticated users.

Recommendations For versions 11.1.1.3.0 through 11.1.1.5.0, consider restricting access to the BPEL Console as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2011-0884

Affected Products

Oracle Bpel Process Manager

PT-2011-2730 · Oracle · Oracle Bpel Process Manager

CVE-2011-0884

Related Identifiers

Affected Products

References · 4