Vulnerability Description
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Applications | 10.7 |
| Oracle | E-Business Suite | 11.1 |
References
- http://marc.info/?l=bugtraq&m=105906721920776&w=2
- http://otn.oracle.com/deploy/security/pdf/2003alert56.pdf
- http://marc.info/?l=bugtraq&m=105906721920776&w=2
- http://otn.oracle.com/deploy/security/pdf/2003alert56.pdf
FAQ
What is CVE-2003-0632?
CVE-2003-0632 is a vulnerability with a CVSS score of 7.5 (HIGH). Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary...
How severe is CVE-2003-0632?
CVE-2003-0632 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0632?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Applications, Oracle E-Business Suite.