CVE-2002-1666

Description

Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL.

Affected products

• oracle / e-business_suite11.1 – 11.1
• oracle / e-business_suite11.2 – 11.2
• oracle / e-business_suite11.3 – 11.3
• oracle / e-business_suite11.4 – 11.4
• oracle / e-business_suite11.5 – 11.5
• oracle / e-business_suite11.6 – 11.6

References

• VENDOR_ADVISORYhttp://otn.oracle.com/deploy/security/pdf/apps_alert_ebiz2.pdf
• MISChttp://www.securityfocus.com/bid/4551
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/8897