Vulnerability Description
Unspecified vulnerability in the Oracle Forms component in Oracle Application Server 10.1.2.2 and E-Business Suite 12.0.3 allows remote attackers to affect integrity via unknown vectors, aka AS04.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Application Server | 10.1.2.2 |
| Oracle | E-Business Suite | 12.0.3 |
References
- http://marc.info/?l=bugtraq&m=120058413923005&w=2Issue TrackingMailing ListThird Party Advisory
- http://secunia.com/advisories/28518Third Party Advisory
- http://secunia.com/advisories/28556Third Party Advisory
- http://securitytracker.com/id?1019218Third Party AdvisoryVDB Entry
- http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.htmlBroken Link
- http://www.osvdb.org/40296Broken Link
- http://www.securityfocus.com/bid/27229ExploitPatchThird Party Advisory
- http://www.us-cert.gov/cas/techalerts/TA08-017A.htmlThird Party AdvisoryUS Government Resource
- http://www.vupen.com/english/advisories/2008/0150PatchVendor Advisory
- http://www.vupen.com/english/advisories/2008/0180PatchVendor Advisory
- http://marc.info/?l=bugtraq&m=120058413923005&w=2Issue TrackingMailing ListThird Party Advisory
- http://secunia.com/advisories/28518Third Party Advisory
- http://secunia.com/advisories/28556Third Party Advisory
- http://securitytracker.com/id?1019218Third Party AdvisoryVDB Entry
- http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.htmlBroken Link
FAQ
What is CVE-2008-7235?
CVE-2008-7235 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Unspecified vulnerability in the Oracle Forms component in Oracle Application Server 10.1.2.2 and E-Business Suite 12.0.3 allows remote attackers to affect integrity via unknown vectors, aka AS04.
How severe is CVE-2008-7235?
CVE-2008-7235 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-7235?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Application Server, Oracle E-Business Suite.