Vulnerability Details CVE-2002-1666
Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://otn.oracle.com/deploy/security/pdf/apps_alert_ebiz2.pdf
- http://www.securityfocus.com/bid/4551
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8897
- http://otn.oracle.com/deploy/security/pdf/apps_alert_ebiz2.pdf
- http://www.securityfocus.com/bid/4551
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8897
Products affected by CVE-2002-1666
-
cpe:2.3:a:oracle:e-business_suite:11.1
-
cpe:2.3:a:oracle:e-business_suite:11.2
-
cpe:2.3:a:oracle:e-business_suite:11.3
-
cpe:2.3:a:oracle:e-business_suite:11.4
-
cpe:2.3:a:oracle:e-business_suite:11.5
-
cpe:2.3:a:oracle:e-business_suite:11.6