Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7238

Overview

Vulnerability Score 6.0 6.0
CVE Id CVE-2008-7238
Last Modified 22 Oct 2012 11:01:38
Published 14 Sep 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2008-7238

Summary

Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.3 allow (1) local users to affect confidentiality and integrity via unknown vectors related to the Mobile Application Server component (APP01); (2) remote attackers to affect confidentiality via unknown vectors related to the Oracle Applications Framework (APP03); remote authenticated users to affect confidentiality and integrity via unknown vectors related to the (3) CRM Technical Foundation (APP05) and (4) Oracle Application Object Library (APP06); and remote authenticated users to affect integrity and availability via unknown vectors related to (5) Oracle Applications Technology Stack (APP07).

Vulnerable Systems

Application

  • Oracle E-business Suite 12.0.3


References

CERT - TA08-017A

VUPEN - ADV-2008-0180

VUPEN - ADV-2008-0150

BID - 27229

CONFIRM - http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2008.html

SECTRACK - 1019218

HP - HPSBMA02133

OSVDB - 40290

OSVDB - 40289

OSVDB - 40288

OSVDB - 40286

OSVDB - 40284

SECUNIA - 28556

SECUNIA - 28518

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html

HP - SSRT061201


Last Updated: 27 May 2016 11:01:06