|
|
Info |
Last Modified |
| 5 months ago |
|
|
|
|
Description |
PeopleSoft PeopleTools contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plain-text user ID's and passwords in PeopleTools log files on installations where xmllinks are used, which may lead to a loss of confidentiality.
|
|
Classification |
Location:
Local Access Required
Attack Type:
Information Disclosure
Impact:
Loss of Confidentiality
Solution:
Patch,
Upgrade
Exploit:
Exploit Unknown
Disclosure:
Vendor Verified
|
|
Solution |
Upgrade to version 8.47.06 or higher for the 8.47 line, or 8.46.14 or higher for the 8.46 line, as it has been reported to fix this vulnerability. In addition, Oracle has released a patch for some older versions: Solution 662027 for PeopleTools 8.47.05, and Solution 662061 for PeopleTools 8.46.13
|
|
Products |
|
PeopleTools
 |
8.47.04 |
8.47.05 |
8.47 GA |
8.47.01 |
8.47.02 |
8.47.03 |
8.46 GA |
8.46.01 |
8.46.02 |
8.46.03 |
8.46.04 |
8.46.05 |
8.46.06 |
8.46.07 |
8.46.08 |
8.46.09 |
8.46.10 |
8.46.11 |
8.46.12 |
8.46.13 |
|
|
|
|
|
|
Credit |
Unknown or Incomplete
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
