Vulnerabilities > Oracle > E Business Suite > 11.6

DATE CVE VULNERABILITY TITLE RISK
2006-10-18 CVE-2006-5367 Multiple vulnerability in Oracle October 2006 Security Update
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.7 up to 11.5.10CU2 have unknown impact and remote authenticated attack vectors, aka Vuln# (1) APPS03 in Oracle Applications Framework, (2) APPS04 in Oracle Applications Technology Stack, and (3) APPS05 in Oracle Balanced Scorecard, (4) APPS09 in Oracle Scripting, and (5) APPS10 in Oracle Trading Community.
network
low complexity
oracle
critical
9.0
2003-12-31 CVE-2003-1116 Unspecified vulnerability in Oracle E-Business Suite
The communications protocol for the Report Review Agent (RRA), aka FND File Server (FNDFS) program, in Oracle E-Business Suite 10.7, 11.0, and 11.5.1 to 11.5.8 allows remote attackers to bypass authentication and obtain sensitive information from the Oracle Applications Concurrent Manager by spoofing requests to the TNS Listener.
network
low complexity
oracle
5.0
2003-08-27 CVE-2003-0633 Information Disclosure vulnerability in Oracle Applications and E-Business Suite
Multiple vulnerabilities in aoljtest.jsp of Oracle Applications AOL/J Setup Test Suite in Oracle E-Business Suite 11.5.1 through 11.5.8 allow a remote attacker to obtain sensitive information without authentication, such as the GUEST user password and the application server security key.
network
low complexity
oracle
5.0
2003-08-27 CVE-2003-0632 Remote Security vulnerability in Oracle Applications and E-Business Suite
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.
network
low complexity
oracle
7.5
2002-12-31 CVE-2002-1882 Authentication Bypassing vulnerability in Oracle E-Business Suite
Unknown vulnerability in AolSecurityPrivate.class in Oracle E-Business Suite 11i 11.1 through 11.6 allows remote attackers to bypass user authentication checks via unknown attack vectors.
network
low complexity
oracle
7.5
2002-12-31 CVE-2002-1666 Unspecified vulnerability in Oracle E-Business Suite
Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL.
network
low complexity
oracle
5.0