Moderate

CVE-2002-1666 - Unspecified vulnerability in Oracle E-Business Suite

Publication: 2002-12-31

Summary

Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL.

Risk level (CVSS 5)

Moderate

5.0

Access Vector

Network
Adjacent Network
Local

Access Complexity

Low
Medium
High

Authentication

None
Single
Multiple

Confident. Impact

Complete
Partial
None

Integrity Impact

Complete
Partial
None

Affected Products

Oracle E-business Suite 11.1
Oracle E-business Suite 11.2
Oracle E-business Suite 11.3
Oracle E-business Suite 11.4
Oracle E-business Suite 11.5
Oracle E-business Suite 11.6

References

http://otn.oracle.com/deploy/security/pdf/apps_alert_ebiz2.pdf
http://www.securityfocus.com/bid/4551
https://exchange.xforce.ibmcloud.com/vulnerabilities/8897