CVE-2006-3716 - Vulnerability Details - OpenCVE

Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors, aka Oracle Vuln# (1) APPS01 for Internet Expenses; (2) APPS02, (3) APPS05, (4) APPS06, (5) APPS07, (6) APPS08, (7) APPS09, and (8) APPS10 for Oracle Application Object Library; (9) APPS11, (10) APPS12, and (11) APPS13 for Oracle Applications Technology Stack; (12) APPS14 for Oracle Call Center Technology; (13) APPS15 for Oracle Common Applications; (14) APPS18 for Oracle Self-Service Web Applications; and (15) APPS19 for Oracle Workflow Cartridge.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Oracle	E-business Suite

Configuration 1 [-]

cpe:2.3:a:oracle:e-business_suite:11.5.10.2:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://secunia.com/advisories/21111
http://secunia.com/advisories/21165
http://securitytracker.com/id?1016529
http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html
http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html
http://www.securityfocus.com/archive/1/440758/100/100/threaded
http://www.securityfocus.com/bid/19054
http://www.us-cert.gov/cas/techalerts/TA06-200A.html
http://www.vupen.com/english/advisories/2006/2863
http://www.vupen.com/english/advisories/2006/2947
https://exchange.xforce.ibmcloud.com/vulnerabilities/27897

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-07-19T10:00:00

Updated: 2024-08-07T18:39:53.924Z

Reserved: 2006-07-18T00:00:00

Link: CVE-2006-3716

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-07-21T14:03:00.000

Modified: 2024-11-21T00:14:15.530

Link: CVE-2006-3716

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-07-18T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors, aka Oracle Vuln# (1) APPS01 for Internet Expenses; (2) APPS02, (3) APPS05, (4) APPS06, (5) APPS07, (6) APPS08, (7) APPS09, and (8) APPS10 for Oracle Application Object Library; (9) APPS11, (10) APPS12, and (11) APPS13 for Oracle Applications Technology Stack; (12) APPS14 for Oracle Call Center Technology; (13) APPS15 for Oracle Common Applications; (14) APPS18 for Oracle Self-Service Web Applications; and (15) APPS19 for Oracle Workflow Cartridge."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1016529", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016529"}, {"name": "19054", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19054"}, {"name": "oracle-cpu-july-2006(27897)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}, {"name": "21165", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21165"}, {"name": "HPSBMA02133", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "ADV-2006-2947", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"tags": ["x_refsource_MISC"], "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"name": "SSRT061201", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "TA06-200A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"name": "21111", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21111"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"name": "ADV-2006-2863", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2863"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3716", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors, aka Oracle Vuln# (1) APPS01 for Internet Expenses; (2) APPS02, (3) APPS05, (4) APPS06, (5) APPS07, (6) APPS08, (7) APPS09, and (8) APPS10 for Oracle Application Object Library; (9) APPS11, (10) APPS12, and (11) APPS13 for Oracle Applications Technology Stack; (12) APPS14 for Oracle Call Center Technology; (13) APPS15 for Oracle Common Applications; (14) APPS18 for Oracle Self-Service Web Applications; and (15) APPS19 for Oracle Workflow Cartridge."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1016529", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016529"}, {"name": "19054", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19054"}, {"name": "oracle-cpu-july-2006(27897)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}, {"name": "21165", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21165"}, {"name": "HPSBMA02133", "refsource": "HP", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "ADV-2006-2947", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"name": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html", "refsource": "MISC", "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"name": "SSRT061201", "refsource": "HP", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "TA06-200A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"name": "21111", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21111"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"name": "ADV-2006-2863", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2863"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:39:53.924Z"}, "title": "CVE Program Container", "references": [{"name": "1016529", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016529"}, {"name": "19054", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19054"}, {"name": "oracle-cpu-july-2006(27897)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}, {"name": "21165", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21165"}, {"name": "HPSBMA02133", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "ADV-2006-2947", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"name": "SSRT061201", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"name": "TA06-200A", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"name": "21111", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21111"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"name": "ADV-2006-2863", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2863"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3716", "datePublished": "2006-07-19T10:00:00", "dateReserved": "2006-07-18T00:00:00", "dateUpdated": "2024-08-07T18:39:53.924Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.10.2:*:*:*:*:*:*:*", "matchCriteriaId": "80B61990-9CC2-4215-9879-AC817F4E6767", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5.10CU2 have unknown impact and attack vectors, aka Oracle Vuln# (1) APPS01 for Internet Expenses; (2) APPS02, (3) APPS05, (4) APPS06, (5) APPS07, (6) APPS08, (7) APPS09, and (8) APPS10 for Oracle Application Object Library; (9) APPS11, (10) APPS12, and (11) APPS13 for Oracle Applications Technology Stack; (12) APPS14 for Oracle Call Center Technology; (13) APPS15 for Oracle Common Applications; (14) APPS18 for Oracle Self-Service Web Applications; and (15) APPS19 for Oracle Workflow Cartridge."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en Oracle E-Business Suite y Applications 11.5.10CU2 tienen un impacto desconocido y vectores de ataque, tambi\u00e9n conocido como Oracle Vuln# (1) APPS01 para Internet Expenses; (2) APPS02, (3) APPS05, (4) APPS06, (5) APPS07, (6) APPS08, (7) APPS09, y (8) APPS10 para Oracle Application Object Library; (9) APPS11, (10) APPS12, y (11) APPS13 para Oracle Applications Technology Stack; (12) APPS14 para Oracle Call Center Technology; (13) APPS15 para Oracle Common Applications; (14) APPS18 para Oracle Self-Service Web Applications; y (15) APPS19 para Oracle Workflow Cartridge."}], "id": "CVE-2006-3716", "lastModified": "2024-11-21T00:14:15.530", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-07-21T14:03:00.000", "references": [{"source": "cve@mitre.org", "url": "http://secunia.com/advisories/21111"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/21165"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016529"}, {"source": "cve@mitre.org", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/19054"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2863"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21111"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21165"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1016529"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2006-101315.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.red-database-security.com/advisory/oracle_cpu_july_2006.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/440758/100/100/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/19054"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA06-200A.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2863"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2947"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27897"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}