The Oracle Reports Server may disclose the current APPS password. Oracle Reports Server is installed as part of the default installation and is used by Oracle Business Intelligence (BIS) and related business intelligence modules (Financial...
Oracle E-Business Suite FNDFS Vulnerability
The Oracle Applications FNDFS program, used to retrieve report output from the Concurrent Manager server, can be used to remotely retrieve any file from the server without operating system or application authentication. A mandatory patch from Oracle...
- Read more about Oracle E-Business Suite FNDFS Vulnerability
- Log in to post comments
Oracle E-Business Suite AOL/J Setup Test Information Disclosure
Integrigy Security Alert______________________________________________________________________ Oracle E-Business Suite AOL/J Setup Test Information DisclosureJuly 23, 2003______________________________________________________________________...
Oracle E-Business Suite FNDWRR Buffer Overflow
The Oracle Applications FNDWRR CGI program, used to retrieve report output from the Concurrent Manager server via a web browser, has a remotely exploitable buffer overflow. A mandatory patch from Oracle is required to solve this security issue....
- Read more about Oracle E-Business Suite FNDWRR Buffer Overflow
- Log in to post comments
Oracle E-Business Suite - Multiple SQL Injection Vulnerabilities
Multiple SQL injection vulnerabilities exist in the Oracle E-Business Suite 11i and Oracle Applications 11.0. These vulnerabilities can be remotely exploited simply using a browser and sending a specially crafted URL to the web server. A mandatory...