"The Oracle E-Business Suite Report Review Agent (RRA) contains a vulnerability that allows remote attackers to read sensitive data on Oracle Applications Concurrent Manager servers, including password files."
The link address is: http://www.sans.org/newsletters/cva/vol2_15.php