OSVDB ID: 76533

Title: Oracle Agile PLM for Process Supplier Portal Component Unspecified Remote Information Disclosure

Info

Disclosure

Oct 18, 2011

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Oct 18, 2011

Description

Oracle Agile PLM for Process contains a flaw related to the Supplier Portal component that may allow a remote attacker to gain unauthorized access to certain unspecified information. No further details have been provided.

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: Vendor Verified

Solution

Oracle has released a Critical Patch Update to address this vulnerability. Check the vendor advisory or solution in the references section.

Products

Unknown or Incomplete

References

Security Tracker: 1026205
CVE ID: 2011-3532 (see also: NVD)
Secunia Advisory ID: 46507
Bugtraq ID: 50227
ISS X-Force ID: 70805
News Article: http://www.csoonline.com/article/691961/oracle-patch-batch-affects-hundreds-of-products
Vendor Specific News/Changelog Entry: http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/76533