CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
86.3%
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.
Vendor | Product | Version | CPE |
---|---|---|---|
oracle | applications | 10.7 | cpe:2.3:a:oracle:applications:10.7:*:*:*:*:*:*:* |
oracle | applications | 11.0 | cpe:2.3:a:oracle:applications:11.0:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.1 | cpe:2.3:a:oracle:e-business_suite:11.1:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.2 | cpe:2.3:a:oracle:e-business_suite:11.2:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.3 | cpe:2.3:a:oracle:e-business_suite:11.3:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.4 | cpe:2.3:a:oracle:e-business_suite:11.4:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.5 | cpe:2.3:a:oracle:e-business_suite:11.5:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.6 | cpe:2.3:a:oracle:e-business_suite:11.6:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.7 | cpe:2.3:a:oracle:e-business_suite:11.7:*:*:*:*:*:*:* |
oracle | e-business_suite | 11.8 | cpe:2.3:a:oracle:e-business_suite:11.8:*:*:*:*:*:*:* |