Oracle » E-business Suite : Security Vulnerabilities, CVEs, Published In 2003 CVSS score >= 5
The communications protocol for the Report Review Agent (RRA), aka FND File Server (FNDFS) program, in Oracle E-Business Suite 10.7, 11.0, and 11.5.1 to 11.5.8 allows remote attackers to bypass authentication and obtain sensitive information from the Oracle Applications Concurrent Manager by spoofing requests to the TNS Listener.
Max CVSS
5.0
EPSS Score
0.54%
Published
2003-12-31
Updated
2017-07-11
Multiple vulnerabilities in aoljtest.jsp of Oracle Applications AOL/J Setup Test Suite in Oracle E-Business Suite 11.5.1 through 11.5.8 allow a remote attacker to obtain sensitive information without authentication, such as the GUEST user password and the application server security key.
Max CVSS
5.0
EPSS Score
0.83%
Published
2003-08-27
Updated
2016-10-18
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.
Max CVSS
7.5
EPSS Score
1.37%
Published
2003-08-27
Updated
2016-10-18
3 vulnerabilities found