Lucene search

[email protected]CVE-2003-0633

HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0633

2003-08-2704:00:00

[email protected]

web.nvd.nist.gov

cve-2003-0633

oracle applications

aol/j setup test suite

e-business suite 11.5.1

e-business suite 11.5.8

remote attacker

sensitive information

authentication

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.8%

JSON

Multiple vulnerabilities in aoljtest.jsp of Oracle Applications AOL/J Setup Test Suite in Oracle E-Business Suite 11.5.1 through 11.5.8 allow a remote attacker to obtain sensitive information without authentication, such as the GUEST user password and the application server security key.

Affected configurations

NVD

Node

oracleapplicationsMatch10.7

oracleapplicationsMatch11.0

oraclee-business_suiteMatch11.1

oraclee-business_suiteMatch11.2

oraclee-business_suiteMatch11.3

oraclee-business_suiteMatch11.4

oraclee-business_suiteMatch11.5

oraclee-business_suiteMatch11.6

oraclee-business_suiteMatch11.7

oraclee-business_suiteMatch11.8

CPENameOperatorVersion
oracle:applicationsoracle applicationseq10.7
oracle:applicationsoracle applicationseq11.0
oracle:e-business_suiteoracle e-business suiteeq11.1
oracle:e-business_suiteoracle e-business suiteeq11.2
oracle:e-business_suiteoracle e-business suiteeq11.3
oracle:e-business_suiteoracle e-business suiteeq11.4
oracle:e-business_suiteoracle e-business suiteeq11.5
oracle:e-business_suiteoracle e-business suiteeq11.6
oracle:e-business_suiteoracle e-business suiteeq11.7
oracle:e-business_suiteoracle e-business suiteeq11.8

CPE	Name	Operator	Version
oracle:applications	oracle applications	eq	10.7
oracle:applications	oracle applications	eq	11.0
oracle:e-business_suite	oracle e-business suite	eq	11.1
oracle:e-business_suite	oracle e-business suite	eq	11.2
oracle:e-business_suite	oracle e-business suite	eq	11.3
oracle:e-business_suite	oracle e-business suite	eq	11.4
oracle:e-business_suite	oracle e-business suite	eq	11.5
oracle:e-business_suite	oracle e-business suite	eq	11.6
oracle:e-business_suite	oracle e-business suite	eq	11.7
oracle:e-business_suite	oracle e-business suite	eq	11.8

References

marc.info/?l=bugtraq&m=105906689120237&w=2

otn.oracle.com/deploy/security/pdf/2003alert55.pdf

www.securityfocus.com/bid/8268

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.8%

JSON

Related for CVE-2003-0633

cvelist1 nvd1