E-business Suite@11i Security Vulnerabilities and Issues — E-business Suite@11i CVE List

Lucene search

OracleE-business Suite11i

4 matches found

CVE•added 2004/06/01 4:0 a.m.•56 views

CVE-2004-0385

Heap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allows remote attackers to execute arbitrary code via a long HTTP request method header to the Web Cache listener. NOTE: due to the vagueness of the Oracle advisory, it is not clear w...

10CVSS7.6AI score0.38816EPSS

CVE•added 2007/11/08 8:46 p.m.•47 views

CVE-2007-5766

SQL injection vulnerability in okxLOV.jsp in Oracle E-Business Suite 11 and 12 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: this is probably the same issue as CVE-2007-5527 or CVE-2007-5528, but there are insufficient details to be sure.

7.5CVSS7.7AI score0.01124EPSS

CVE•added 2004/08/06 4:0 a.m.•41 views

CVE-2004-0543

Multiple SQL injection vulnerabilities in Oracle Applications 11.0 and Oracle E-Business Suite 11.5.1 through 11.5.8 allow remote attackers to execute arbitrary SQL procedures and queries.

10CVSS8AI score0.06033EPSS

CVE•added 2002/03/09 5:0 a.m.•40 views

CVE-2001-0528

Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, which allows local users to obtain the password and gain privileges.

7.2CVSS6.7AI score0.00452EPSS