OSVDB ID: 31391

Title: Oracle PeopleSoft PeopleTools Authenticated HTTP Complex Remote Information Disclosure (PSE08)

Info

Disclosure
Oct 18, 2006

Discovery
Unknown

Dates

Exploit
Unknown

Solution
Oct 17, 2006

Description

Classification

 Location: Remote/Network Access Required
Attack Type: Information Disclosure
Impact: Unknown
Solution: Upgrade
Exploit: Exploit Unknown
Disclosure: Vendor Verified
OSVDB: Authentication Required, Web Related

Solution

 Upgrade to version 8.42.12 for the 8.42 line, 8.46.16 or higher for the 8.46 line, 8.47.10 or higher for the 8.47 line, or 8.48.04 or higher for the 8.48 line, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Oracle Corporation

PeopleTools

 8.48 GA
8.46.08
8.22.05
8.46.14
8.47.04
8.22.06
8.46.15
8.47.05
8.48.01
8.46.09
8.46.10
8.22.07
8.47.06
8.48.02
8.47.07
8.48.03
8.46.11
8.46 GA
8.22.08
8.22.09
8.47.08
8.46.12
8.46.01
8.46.13
8.46.02
8.22.10
8.47.09
8.22 GA
8.46.03
8.22.11
8.46.04
8.22.01
8.47 GA
8.46.05
8.22.02
8.47.01
8.22.03
8.47.02
8.46.06
8.46.07
8.22.04
8.47.03

References

Credit

Unknown or Incomplete


Direct URL: http://osvdb.org/36218