Main Vulnerability Database Vulnerabilities #VU44596

Input validation error in PeopleSoft Enterprise PeopleTools - CVE-2011-2315

Published: October 19, 2011 / Updated: August 11, 2020

Vulnerability identifier: #VU44596

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2011-2315

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Oracle

Affected software:
PeopleSoft Enterprise PeopleTools

Detailed vulnerability description

The vulnerability allows a remote #AU# to read and manipulate data.

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.49, 8.50, and 8.51 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Security.

How to mitigate CVE-2011-2315

Install update from vendor's website.

Sources

http://secunia.com/advisories/46515
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
http://www.securityfocus.com/bid/50263

Input validation error in PeopleSoft Enterprise PeopleTools - CVE-2011-2315

Detailed vulnerability description

How to mitigate CVE-2011-2315

Sources

Please verify you're human