OSVDB ID: 70563

Title: Oracle Supply Chain Products Suite Agile Core Web Client Unspecified Remote Issue

Info

Disclosure

Jan 18, 2011

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Jan 18, 2011

Description

Oracle Supply Chain Products Suite contains a flaw related to the 'Web Client' sub-component in the 'Agile Core' component that may allow a remote attacker to manipulate certain data. No further details have been provided.

Classification

Location: Remote / Network Access
Attack Type: Attack Type Unknown
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: Vendor Verified
OSVDB: Authentication Required

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Oracle has released a patch to address this vulnerability.

Products

Oracle Corporation	Supply Chain	9.3.0.2
		9.3.1

References

CVE ID: 2010-4429 (see also: NVD)
Secunia Advisory ID: 42923
Bugtraq ID: 45860
VUPEN Advisory: ADV-2011-0145
News Article: http://www.computerworld.com/s/article/9205121/Oracle_plans_to_release_66_patches_on_Tuesday
Vendor Specific News/Changelog Entry: http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/70563

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Oracle Corporation

Supply Chain

References

Credit