ID OSVDB:22608Type osvdbReporter OSVDBModified 2006-01-17T04:32:39
Description
Solution Description
Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.
References:
Vendor Specific Advisory URL
Vendor Specific Advisory URL
Secunia Advisory ID:18493
Secunia Advisory ID:18608
News Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html
Keyword: Document ID: c00593668
Keyword: HPSBMA02094
Keyword: SSRT061104
Keyword: APPS10
FrSIRT Advisory: ADV-2006-0243
FrSIRT Advisory: ADV-2006-0323
CVE-2006-0277
CERT VU: 545804
Bugtraq ID: 16287
{"type": "osvdb", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22608", "bulletinFamily": "software", "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/", "score": 10.0}, "viewCount": 0, "edition": 1, "reporter": "OSVDB", "title": "Oracle E-Business Suite/Applications Applications Technology Stack HTTP Trivial Information Disclosure (APPS10)", "affectedSoftware": [], "enchantments": {"score": {"value": 8.4, "vector": "NONE", "modified": "2017-04-28T13:20:19", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2006-0277"]}, {"type": "osvdb", "idList": ["OSVDB:22615", "OSVDB:22606", "OSVDB:22609", "OSVDB:22617", "OSVDB:22616", "OSVDB:22607", "OSVDB:22614", "OSVDB:22600", "OSVDB:22610", "OSVDB:22620"]}], "modified": "2017-04-28T13:20:19", "rev": 2}, "vulnersScore": 8.4}, "references": [], "id": "OSVDB:22608", "lastseen": "2017-04-28T13:20:19", "cvelist": ["CVE-2006-0277"], "modified": "2006-01-17T04:32:39", "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS10\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n"}
{"cve": [{"lastseen": "2020-10-03T11:48:12", "description": "Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) APPS01 in the (a) Application Install component; (2) APPS07 in the (b) Oracle Applications Framework component; (3) APPS08, (4) APPS09, (5) APPS10, and (6) APPS11 in the (c) Oracle Applications Technology Stack component; (7) APPS12 in the (d) Oracle Human Resources component; (8) APPS15 and (9) APPS16 in the (e) Oracle Marketing component; (10) APPS17 in the (f) Marketing Encyclopedia System component; (11) APPS18 in the (g) Oracle Trade Management component; and (12) APPS19 in the (h) Oracle Web Applications Desktop Integration component.", "edition": 3, "cvss3": {}, "published": "2006-01-18T11:03:00", "title": "CVE-2006-0277", "type": "cve", "cwe": ["NVD-CWE-noinfo"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": true, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 10.0, "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": true, "impactScore": 10.0, "obtainUserPrivilege": false}, "cvelist": ["CVE-2006-0277"], "modified": "2017-07-20T01:29:00", "cpe": ["cpe:/a:oracle:e-business_suite:11.5.10"], "id": "CVE-2006-0277", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-0277", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cpe23": ["cpe:2.3:a:oracle:e-business_suite:11.5.10:*:*:*:*:*:*:*"]}], "osvdb": [{"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS08\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22607", "id": "OSVDB:22607", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Applications Technology Stack HTTP Trivial Information Disclosure (APPS08)", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: APPS19\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22617", "id": "OSVDB:22617", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Web Applications Desktop Integration HTTP Information Disclosure", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: APPS11\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22609", "id": "OSVDB:22609", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Applications Technology Stack HTTP Trivial Information Disclosure (APPS11)", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS15\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22613", "id": "OSVDB:22613", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Marketing HTTP Authenticated Issue (APPS15)", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS17\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22615", "id": "OSVDB:22615", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Marketing Encyclopedia System HTTP Information Disclosure", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS09\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22620", "id": "OSVDB:22620", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Applications Technology Stack HTTP Trivial Information Disclosure (APPS09)", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS07\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22606", "id": "OSVDB:22606", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Applications Framework HTTP Unspecified Authenticated Issue", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: APPS16\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22614", "id": "OSVDB:22614", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Marketing HTTP Authenticated Issue (APPS16)", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS01\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22600", "id": "OSVDB:22600", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Application Install Log File Local Information Disclosure", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:19", "bulletinFamily": "software", "cvelist": ["CVE-2006-0277"], "edition": 1, "description": "## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch (Jan2006 Critical Patch Update) to address this vulnerability.\n## References:\n[Vendor Specific Advisory URL](http://www.oracle.com/technology/deploy/security/pdf/cpujan2006.html)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00593668)\n[Secunia Advisory ID:18493](https://secuniaresearch.flexerasoftware.com/advisories/18493/)\n[Secunia Advisory ID:18608](https://secuniaresearch.flexerasoftware.com/advisories/18608/)\nNews Article: http://news.com.com/Oracle+fixes+pile+of+bugs/2100-1002_3-6027847.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-01/0420.html\nKeyword: Document ID: c00593668\nKeyword: HPSBMA02094\nKeyword: SSRT061104\nKeyword: APPS18\nFrSIRT Advisory: ADV-2006-0243\nFrSIRT Advisory: ADV-2006-0323\n[CVE-2006-0277](https://vulners.com/cve/CVE-2006-0277)\nCERT VU: 545804\nBugtraq ID: 16287\n", "modified": "2006-01-17T04:32:39", "published": "2006-01-17T04:32:39", "href": "https://vulners.com/osvdb/OSVDB:22616", "id": "OSVDB:22616", "type": "osvdb", "title": "Oracle E-Business Suite/Applications Trade Management HTTP Information Disclosure", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
