CVE Vulnerability

CVE-2008-0348

Multiple unspecified vulnerabilities in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.22.18, 8.48.15, and 8.49.07 have unknown impact and remote attack vectors, aka (1) PSE01, (2) PSE03, and (3) PSE04.

10 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.us-cert.gov/cas/techalerts/TA08-017A.html US Government Resource
http://www.securityfocus.com/bid/27229
http://securitytracker.com/id?1019218
http://secunia.com/advisories/28518 Vendor Advisory
http://secunia.com/advisories/28556
http://www.vupen.com/english/advisories/2008/0180
http://www.vupen.com/english/advisories/2008/0150
http://marc.info/?l=bugtraq&m=120058413923005&w=2
http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html
Configurations

Configuration 1

cpe:2.3:a:oracle:database_server:10.2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:10.1.2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:9.0.1.5:*:fips:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.47:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:10.1.3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:9.2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:10.1.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:9.2.0.8dv:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:10.2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.48:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:11.1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:12.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:11.5.10.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:12.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:9.0.4.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:10.1.2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:12.0.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:10.1.3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:collaboration_suite:10.1.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:12.0.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:11.5.10:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:10.1.3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:11.5.9:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:oracle:application_server:1.0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.49:*:*:*:*:*:*:*
Information

Published : 2008-01-17 11:00

Updated : 2012-10-23 02:42

NVD link : CVE-2008-0348

Mitre link : CVE-2008-0348

Products Affected
No products.
CWE
NVD-CWE-noinfo