Overview
An unspecified vulnerability in the Oracle Application Object Library may allow a remote, unauthenticated attacker to compromise system integrity and confidentiality.
Description
Oracle Application Object Library contains a vulnerability.The details of this vulnerability are not clear. However, Oracle states this issue can allow a remote attacker to compromise system integrity and confidentiality. Note that an attacker does not need any valid authentication credentials to exploit this vulnerability. This issue is identified as Oracle vuln# APPS04 in the Oracle Critical Patch Update for April 2006. |
Impact
A remote, unauthenticated attacker may be able gain access to and modify sensitive information. |
Solution
Apply patches |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This vulnerability was reported in the Oracle Critical Patch Update for April 2006. Refer to the Critical Patch Update for a list of reporters credited by Oracle.
This document was written by Jeff Gennari.
Other Information
| CVE IDs: | None |
| Severity Metric: | 22.95 |
| Date Public: | 2006-04-18 |
| Date First Published: | 2006-04-20 |
| Date Last Updated: | 2006-04-20 11:33 UTC |
| Document Revision: | 14 |