OSVDB ID: 81422

Title: Oracle PeopleSoft Enterprise Supply Chain Management (SCM) eProcurement Component Unspecified Remote Issue

Info

Disclosure

Apr 18, 2012

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Apr 18, 2012

Description

PeopleSoft Enterprise SCM contains a flaw related to the eProcurment component that may allow an authenticated remote attacker to have an unspecified impact on integrity. No further details have been provided.

Classification

Location: Remote / Network Access
Attack Type: Attack Type Unknown
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: Vendor Verified
OSVDB: Authentication Required

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch to address this vulnerability. Check the vendor advisory in the references section.

Products

Oracle Corporation	PeopleSoft Enterprise SCM	9.1
		9.0

References

Security Tracker: 1026954
CVE ID: 2012-0530 (see also: NVD)
Secunia Advisory ID: 48884
Bugtraq ID: 53110
Related OSVDB ID: 81423
Vendor Specific Advisory URL: http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html#AppendixPS

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/81422

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Oracle Corporation

PeopleSoft Enterprise SCM

References

Credit