Oracle Application Framework Diagnostic Mode Bypass Vulnerability
Gravité: : Medium
Identifiant(s) CVE: : CVE-2013-0397
Date du conseil: 21 juillet 2015
Description
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Diagnostics.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1005347
Trend Micro Deep Security DPI Rule Name: 1005347 - Restrict Oracle Application Framework RF.jsp Diagnostic Mode
Affected software and version:
- oracle e-business_suite 11.5.10.2
- oracle e-business_suite 12.0.6
- oracle e-business_suite 12.1.3