Oracle Application Framework Diagnostic Mode Bypass Vulnerability
Severity: MEDIUM
CVE Identifier: CVE-2013-0397
Advisory Date: JUL 21, 2015
DESCRIPTION
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Diagnostics.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005347
Trend Micro Deep Security DPI Rule Name: 1005347 - Restrict Oracle Application Framework RF.jsp Diagnostic Mode
AFFECTED SOFTWARE AND VERSION
- oracle e-business_suite 11.5.10.2
- oracle e-business_suite 12.0.6
- oracle e-business_suite 12.1.3