Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0380

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2015-0380
Last Modified 14 Apr 2015 10:02:32
Published 21 Jan 2015 01:59:26
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0380

Summary

Unspecified vulnerability in the Oracle Telecommunications Billing Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to OA Based UI for Bill Summary.

Vulnerable Systems

Application

  • Oracle E-business Suite 11.5.10.2

  • Oracle E-business Suite 12.0.4

  • Oracle E-business Suite 12.0.5

  • Oracle E-business Suite 12.0.6

  • Oracle E-business Suite 12.1.1

  • Oracle E-business Suite 12.1.2

  • Oracle E-business Suite 12.1.3

  • Oracle E-business Suite 12.2.2

  • Oracle E-business Suite 12.2.3

  • Oracle E-business Suite 12.2.4


References

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

XF - oracle-cpujan2015-cve20150380(100101)

BID - 72236

SECTRACK - 1031579

BUGTRAQ - 20150402 NEW : VMSA-2015-0003 VMware product updates address critical information disclosure issue in JRE

MISC - http://packetstormsecurity.com/files/131271/VMware-Security-Advisory-2015-0003.html


Last Updated: 27 May 2016 11:08:26