Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0528

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0528
Last Modified 05 Sep 2008 04:24:19
Published 14 Aug 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0528

Summary

Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, which allows local users to obtain the password and gain privileges.

Vulnerable Systems

Application

  • Oracle E-business Suite 11i


References

XF - oracle-adi-plaintext-passwords(6501)

BID - 2694

BUGTRAQ - 20010522 Vulnerability in Oracle E-Business Suite Release 11i Applications Desktop Integrator

BUGTRAQ - 20010507 Oracle's ADI 7.1.1.10.1 Major security hole


Last Updated: 27 May 2016 10:36:18