Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Many organizations using Oracle PeopleSoft vulnerable to attacks

Many organizations using Oracle PeopleSoft vulnerable to attacks

2015/06/29

Securityweek - (International) ERPScan released findings from a report revealing that Oracle's PeopleSoft contained several vulnerabilities including information disclosure, extensible markup language external entity (XXE), cross-site scripting (XSS), and authentication bypass flaws as well as configuration-related issues that could allow an attacker to breach PeopleSoft systems connected to the Internet.

Source: http://www.securityweek.com/many-organizations-using-oracle-peoplesoft-vulnerable-attacks-report

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:35