PT-2015-4599 · Oracle · Oracle Siebel Crm

Published

2015-01-21

Updated

2017-09-08

CVE-2015-0387

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Oracle Siebel CRM versions 8.1.1 and 8.2.2

Description The issue affects confidentiality and is related to the Security - LDAP Security Adapter in the Siebel Core - Server OM Services component. It can be exploited by remote authenticated users.

Recommendations For Oracle Siebel CRM version 8.1.1, update to a version that addresses this issue. For Oracle Siebel CRM version 8.2.2, update to a version that addresses this issue. As a temporary workaround, consider restricting access to the Security - LDAP Security Adapter to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2015-0387

Affected Products

Oracle Siebel Crm

PT-2015-4599 · Oracle · Oracle Siebel Crm

CVE-2015-0387

Related Identifiers

Affected Products

References · 6