Oracle E-Business 多個弱點 (2017 年 1 月 CPU)
high Nessus Plugin ID 96608
語系:
概要
遠端主機上安裝的 Web 應用程式受到多個弱點影響。說明
遠端主機上安裝的 Oracle E-Business 版本缺少 2017 年 1 月 Oracle 重要修補程式更新 (CPU)。因此,會受到多個元件和子元件中的多個不明弱點影響,其中最嚴重的弱點可允許未經驗證的遠端攻擊者影響機密性和完整性。受影響的元件和子元件如下:- Oracle Advanced Outbound Telephony:User Interface
- Oracle Application Object Library:Patching
- Oracle Applications DBA:Patching
- Oracle Applications Manager:OAM Client
- Oracle Common Applications:Resources Module
- Oracle Common Applications:Role Summary
- Oracle Common Applications:User Interface
- Oracle CRM Technical Foundation:User Interface
- Oracle Customer Intelligence:User Interface
- Oracle Customer Interaction History:User Interface
- Oracle Email Center:User Interface
- Oracle Fulfillment Manager:User Interface
- Oracle Installed Base:User Interface
- Oracle Interaction Blending:User Interface
- Oracle iStore:Address Book
- Oracle iStore:User Interface
- Oracle Knowledge Management:User Interface
- Oracle Leads Management:User Interface
- Oracle Marketing:User Interface
- Oracle One-to-One Fulfillment:Internal Operations
- Oracle One-to-One Fulfillment:Request Confirmation
- Oracle One-to-One Fulfillment:User Interface
- Oracle Partner Management:User Interface
- Oracle Service Fulfillment Manager:User Interface
- Oracle Universal Work Queue:User Interface
- Oracle XML Gateway:Oracle Transport Agent
解決方案
按照 2017 年 1 月 Oracle 重大修補程式更新公告,套用適當的修補程式。另請參閱
Plugin 詳細資訊
嚴重性: High
ID: 96608
檔案名稱: oracle_e-business_cpu_jan_2017.nasl
版本: 1.11
類型: remote
系列: Misc.
已發布: 2017/1/18
已更新: 2022/4/11
組態: 啟用徹底檢查
支援的感應器: Nessus
風險資訊
VPR
風險因素: Medium
分數: 5.2
CVSS v2
風險因素: Medium
基本分數: 6.8
時間分數: 5.3
媒介: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS 評分資料來源: CVE-2017-3346
CVSS v3
風險因素: High
基本分數: 8.2
時間分數: 7.4
媒介: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N
時間媒介: CVSS:3.0/E:P/RL:O/RC:C
弱點資訊
CPE: cpe:/a:oracle:e-business_suite
必要的 KB 項目: Oracle/E-Business/Version, Oracle/E-Business/patches/installed
可被惡意程式利用: true
可輕鬆利用: Exploits are available
修補程式發佈日期: 2017/1/18
弱點發布日期: 2017/1/18
參考資訊
CVE: CVE-2016-8325, CVE-2017-3246, CVE-2017-3274, CVE-2017-3275, CVE-2017-3277, CVE-2017-3278, CVE-2017-3279, CVE-2017-3280, CVE-2017-3281, CVE-2017-3282, CVE-2017-3283, CVE-2017-3284, CVE-2017-3285, CVE-2017-3286, CVE-2017-3287, CVE-2017-3303, CVE-2017-3326, CVE-2017-3327, CVE-2017-3328, CVE-2017-3333, CVE-2017-3334, CVE-2017-3335, CVE-2017-3336, CVE-2017-3338, CVE-2017-3339, CVE-2017-3340, CVE-2017-3341, CVE-2017-3343, CVE-2017-3344, CVE-2017-3346, CVE-2017-3348, CVE-2017-3349, CVE-2017-3350, CVE-2017-3351, CVE-2017-3352, CVE-2017-3353, CVE-2017-3354, CVE-2017-3357, CVE-2017-3358, CVE-2017-3359, CVE-2017-3360, CVE-2017-3361, CVE-2017-3362, CVE-2017-3363, CVE-2017-3364, CVE-2017-3365, CVE-2017-3366, CVE-2017-3367, CVE-2017-3368, CVE-2017-3369, CVE-2017-3370, CVE-2017-3371, CVE-2017-3372, CVE-2017-3373, CVE-2017-3374, CVE-2017-3375, CVE-2017-3376, CVE-2017-3377, CVE-2017-3378, CVE-2017-3379, CVE-2017-3380, CVE-2017-3381, CVE-2017-3382, CVE-2017-3383, CVE-2017-3384, CVE-2017-3385, CVE-2017-3386, CVE-2017-3387, CVE-2017-3388, CVE-2017-3389, CVE-2017-3390, CVE-2017-3391, CVE-2017-3392, CVE-2017-3394, CVE-2017-3395, CVE-2017-3396, CVE-2017-3397, CVE-2017-3398, CVE-2017-3399, CVE-2017-3400, CVE-2017-3401, CVE-2017-3402, CVE-2017-3403, CVE-2017-3404, CVE-2017-3405, CVE-2017-3406, CVE-2017-3407, CVE-2017-3408, CVE-2017-3409, CVE-2017-3410, CVE-2017-3411, CVE-2017-3412, CVE-2017-3413, CVE-2017-3414, CVE-2017-3415, CVE-2017-3416, CVE-2017-3417, CVE-2017-3418, CVE-2017-3419, CVE-2017-3420, CVE-2017-3421, CVE-2017-3422, CVE-2017-3423, CVE-2017-3424, CVE-2017-3425, CVE-2017-3426, CVE-2017-3427, CVE-2017-3428, CVE-2017-3429, CVE-2017-3430, CVE-2017-3431, CVE-2017-3433, CVE-2017-3435, CVE-2017-3436, CVE-2017-3437, CVE-2017-3438, CVE-2017-3439, CVE-2017-3440, CVE-2017-3441, CVE-2017-3442, CVE-2017-3443
BID: 95618, 95463, 95464, 95465, 95467, 95468, 95485, 95487, 95490, 95492, 95497, 95500, 95511, 95523, 95526, 95531, 95561, 95564, 95569, 95573, 95577, 95582, 95586, 95587, 95591, 95593, 95594, 95595, 95597, 95598, 95600, 95602, 95604, 95605, 95610, 95611, 95612, 95613, 95614, 95615, 95616, 95617