SQL Injection in ERP Oracle EBS

2012-09-06T00:00:00
ID PT-2012-38
Type ptsecurity
Reporter Positive Technologies
Modified 2013-08-23T00:00:00

Description

PT-2012-38: SQL Injection in ERP Oracle EBS

Fix date:

                    January 15, 2013

Vector: Remote

Systems affected: Oracle E-Business Suite 12.x

Vendor: Oracle

Notification status: 06.09.2012 - Vendor gets vulnerability details 15.01.2013 - Vendor releases fixed version and details  23.08.2013 - Public disclosure