CVE-2008-7238

Vulnerability Description

Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.3 allow (1) local users to affect confidentiality and integrity via unknown vectors related to the Mobile Application Server component (APP01); (2) remote attackers to affect confidentiality via unknown vectors related to the Oracle Applications Framework (APP03); remote authenticated users to affect confidentiality and integrity via unknown vectors related to the (3) CRM Technical Foundation (APP05) and (4) Oracle Application Object Library (APP06); and remote authenticated users to affect integrity and availability via unknown vectors related to (5) Oracle Applications Technology Stack (APP07).

CVSS Score

Affected Products

References

• http://marc.info/?l=bugtraq&m=120058413923005&w=2
• http://secunia.com/advisories/28518Vendor Advisory
• http://secunia.com/advisories/28556Vendor Advisory
• http://securitytracker.com/id?1019218Patch
• http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html
• http://www.osvdb.org/40284
• http://www.osvdb.org/40286
• http://www.osvdb.org/40288
• http://www.osvdb.org/40289
• http://www.osvdb.org/40290
• http://www.securityfocus.com/bid/27229ExploitPatch
• http://www.us-cert.gov/cas/techalerts/TA08-017A.htmlPatchUS Government Resource
• http://www.vupen.com/english/advisories/2008/0150PatchVendor Advisory
• http://www.vupen.com/english/advisories/2008/0180Patch
• http://marc.info/?l=bugtraq&m=120058413923005&w=2