|
|
CVE Reference: CVE-2007-2170 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-2170 |
|
|
Description: The APPLSYS.FND_DM_NODES package in Oracle E-Business Suite does not check for valid sessions, which allows remote attackers to delete arbitrary nodes. NOTE: due to lack of details from Oracle, it is not clear whether this issue is related to other CVE identifiers such as CVE-2007-2126, CVE-2007-2127, or CVE-2007-2128. |
|
|
CVE Status: Candidate |
|
|
References: SREASON http://securityreason.com/securityalert/2611 OSVDB 39958 MISC http://www.zerodayinitiative.com/advisories/ZDI-07-016.html http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2007.html http://www.red-database-security.com/advisory/oracle_cpu_apr_2007.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/466214/100/0/threaded |
|
| Return to the previous page. |
