ID CVE-2008-2619
Summary Unspecified vulnerability in the Oracle Reports Developer component in Oracle Application Server 1.0.2.2, 9.0.4.3, and 10.1.2.2, and E-Business Suite 11.5.10.2, allows remote authenticated users to affect availability via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:application_server:1.0.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:1.0.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:9.0.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:9.0.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:application_server:10.1.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:application_server:10.1.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:e-business_suite:11.5.10.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:e-business_suite:11.5.10.2:*:*:*:*:*:*:*
CVSS
Base: 1.7 (as of 08-08-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:L/AC:L/Au:S/C:N/I:N/A:P
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
sectrack
  • 1021054
  • 1021057
secunia 32291
vupen ADV-2008-2825
xf oracle-appserver-reportsdev-dos(45878)
Last major update 08-08-2017 - 01:31
Published 14-10-2008 - 21:11
Back to Top