Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.
2003-08-27T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | oracle | applications | 10.7 | Yes |
| Application | oracle | applications | 11.0 | Yes |
| Application | oracle | e-business_suite | 11.1 | Yes |
| Application | oracle | e-business_suite | 11.2 | Yes |
| Application | oracle | e-business_suite | 11.3 | Yes |
| Application | oracle | e-business_suite | 11.4 | Yes |
| Application | oracle | e-business_suite | 11.5 | Yes |
| Application | oracle | e-business_suite | 11.6 | Yes |
| Application | oracle | e-business_suite | 11.7 | Yes |
| Application | oracle | e-business_suite | 11.8 | Yes |