Information Disclosure in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite
CVE-2013-2959

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Optim Data Growth For Oracle E-business Suite
Vendor: CVE Published:; 27 May 2013

What is CVE-2013-2959?

The Console in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite versions 6.x, 7.x, and 9.x prior to 9.1.0.3 lacks proper encryption for session transmission of login credentials. This vulnerability enables remote attackers to intercept sensitive information over the network, posing significant risks to user privacy and data security.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21637444

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/83668

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2013
Vulnerability Reserved
Apr 12, 2013