Local User Vulnerability in Oracle Application Server 10.1.3.4.1
CVE-2009-1990

Currently unrated

Key Information:

Vendor: Oracle
Status: Application Server
Vendor: CVE Published:; 22 October 2009

Summary

An unspecified vulnerability in the Business Intelligence Enterprise Edition component of Oracle Application Server 10.1.3.4.1 can allow local users to potentially compromise the confidentiality of information through unknown vectors. This flaw emphasizes the need for strict access controls and security measures to mitigate the risk of unauthorized data access.

References

http://osvdb.org/59117

vdb-entryx_refsource_OSVDB

http://www.us-cert.gov/cas/techalerts/TA09-294A.html

third-party-advisoryx_refsource_CERT

http://www.oracle.com/technetwork/topics/security/cpuoct2...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 22, 2009
Vulnerability Reserved
Jun 8, 2009