CVE-2009-1986
https://notcve.org/view.php?id=CVE-2009-1986
Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality via unknown vectors. Vulnerabilidad inespecifica en Oracle Applications Manager component en Oracle E-Business Suite v11.5.10.2 permite a atacantes remotos afectar a la confidencialidad a través de vectores desconocidos. • http://osvdb.org/55902 http://secunia.com/advisories/35776 http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html http://www.securityfocus.com/bid/35695 http://www.securitytracker.com/id?1022562 http://www.vupen.com/english/advisories/2009/1900 https://exchange.xforce.ibmcloud.com/vulnerabilities/51768 •
CVE-2009-0999
https://notcve.org/view.php?id=CVE-2009-0999
Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.0.6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Application Object Library en Oracle E-Business Suite v12.0.6 que permite a los atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://osvdb.org/53753 http://secunia.com/advisories/34693 http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html http://www.securityfocus.com/bid/34461 http://www.securitytracker.com/id?1022056 http://www.us-cert.gov/cas/techalerts/TA09-105A.html •
CVE-2009-0995
https://notcve.org/view.php?id=CVE-2009-0995
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.0.6 and 11i10CU2 allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Applications Framework en Oracle E-Business Suite v12.0.6 y 11i10CU2 permite a atacantes remotos afectar a la integridad a través de vectores desconocidos. • http://osvdb.org/53754 http://secunia.com/advisories/34693 http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html http://www.securityfocus.com/bid/34461 http://www.securitytracker.com/id?1022056 http://www.us-cert.gov/cas/techalerts/TA09-105A.html •
CVE-2009-1000
https://notcve.org/view.php?id=CVE-2009-1000
The Oracle Applications Framework component in Oracle E-Business Suite 12.0.6 and 11i10CU2 uses default passwords for unspecified "FND Applications Users (not DB users)," which has unknown impact and attack vectors. El componente Oracle Applications Framework de Oracle E-Business Suite v12.0.6 y 11i10CU2, utiliza contraseñas por defecto para para "Usuarios de Aplicaciones FND (no usuarios BD)" no especificados. Esto tiene un impacto y vectores de ataque desconocidos. • http://osvdb.org/53755 http://secunia.com/advisories/34693 http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html http://www.securityfocus.com/bid/34461 http://www.securitytracker.com/id?1022056 http://www.us-cert.gov/cas/techalerts/TA09-105A.html • CWE-255: Credentials Management Errors •
CVE-2008-5446
https://notcve.org/view.php?id=CVE-2008-5446
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10 CU2 and 12.0.6 allows remote authenticated users to affect confidentiality via unknown vectors. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is related to unrestricted guest access to the "About Us Page" in the Oracle Applications Framework (OAF), which allows attackers to obtain sensitive system and application environment information. Una vulnerabilidad no especificada en el componente Oracle Applications Framework de Oracle E-Business Suite versiones 11.5.10 CU2 y 12.0.6, permite a los usuarios autenticados remotos afectar la confidencialidad por medio de vectores desconocidos. NOTA: la información anterior fue obtenida de la CPU de enero de 2009. • http://secniche.org/papers/orabs.pdf http://secunia.com/advisories/33525 http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html http://www.securityfocus.com/archive/1/500171/100/0/threaded http://www.securityfocus.com/bid/33177 http://www.securitytracker.com/id?1021568 http://www.vupen.com/english/advisories/2009/0115 •