exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 6 of 6 RSS Feed

Files from Stephen Kost

First Active2003-07-24
Last Active2007-07-25
oracle-multi.txt
Posted Jul 25, 2007
Authored by Stephen Kost, Jack Kanter | Site integrigy.com

Multiple security vulnerabilities have been corrected in the Oracle Business Suite 11i and R12 as part of July 2007 Oracle Critical Patch Update (CPU). These include SQL injection and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss, sql injection
advisories | CVE-2007-3865, CVE-2007-3866, CVE-2007-3867
SHA-256 | 351c01823ab7ff21020c389c6441d2e3d3cd29cb6947a08a05655b437ac95282
integrigyOracle.txt
Posted Jul 14, 2005
Authored by Stephen Kost | Site integrigy.com

A number of high risk SQL injection and parameter manipulation security vulnerabilities in the Oracle E-Business Suite 11i have been corrected by Oracle's July, 2005 release of security patches.

tags | advisory, vulnerability, sql injection
SHA-256 | 061272e7db015ab7bdc393e50a6eb5a9638824bf86b69620707f25a582816c59
oracle23.txt
Posted Jan 22, 2005
Authored by Stephen Kost | Site integrigy.com

Integrigy Security Advisory - Oracle has released the its first Critical Patch Update (January 2005) and fixes 23 vulnerabilities in the Oracle Database, Oracle Application Server, and Oracle E-Business Suite - Integrigy discovered 5 of these vulnerabilities. The vulnerabilities in the Oracle Database and Oracle E-Business Suite should be considered high risk and organizations should work to apply the necessary patches at the earliest possible opportunity.

tags | advisory, vulnerability
SHA-256 | 2d1a3adf02a15d6881976646e7fb047d6f0e021ee82168b3c88b84ea0793d9ac
IntegrigySQL.txt
Posted Jun 7, 2004
Authored by Stephen Kost | Site integrigy.com

Integrigy Security Alert - Multiple SQL injection vulnerabilities exist in the Oracle E-Business Suite 11i and Oracle Applications 11.0. These vulnerabilities can be remotely exploited simply using a browser and sending a specially crafted URL to the web server. A mandatory patch from Oracle is required to solve these security issues.

tags | advisory, web, vulnerability, sql injection
SHA-256 | 812a04625f640c861187cabb6e7c48e6470b1516abeeb36da21fcca155ecb6f3
integrigy.oracle2.txt
Posted Jul 24, 2003
Authored by Stephen Kost | Site integrigy.com

Integrigy Security Alert - The Oracle Applications AOL/J Setup Test Suite, used to trouble-shoot the Self-Service framework, can be exploited to remotely retrieve sensitive configuration and host information without application authentication. The AOL/J Setup Test Suite is installed by default for all 11i implementations. A mandatory patch from Oracle is required to solve this security issue. Affected versions: 11.5.1 - 11.5.8.

tags | advisory
SHA-256 | 854e86c2ad0a68b842923e90cca894c381a953aeda7c67d317b9cdd7deb2aefc
integrigy.oracle.txt
Posted Jul 24, 2003
Authored by Stephen Kost | Site integrigy.com

Integrigy Security Alert - The Oracle Applications FNDWRR CGI program, used to retrieve report output from the Concurrent Manager server via a web browser, has a remotely exploitable buffer overflow. A mandatory patch from Oracle is required to solve this security issue. Affected versions: 11.0 and 11.5.1 - 11.5.8.

tags | advisory, web, overflow, cgi
SHA-256 | 35163210430282df91a1cb019208a07bf7a0cc546bf99ea364752eb19abc2a02
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    69 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close