CVE-2003-0632 | Vulnerability Database | Aqua Security

Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.

Affected Software

Name	Vendor	Start Version	End Version
Applications	Oracle	10.7 (including)	10.7 (including)
Applications	Oracle	11.0 (including)	11.0 (including)
E-business_suite	Oracle	11.1 (including)	11.1 (including)
E-business_suite	Oracle	11.2 (including)	11.2 (including)
E-business_suite	Oracle	11.3 (including)	11.3 (including)
E-business_suite	Oracle	11.4 (including)	11.4 (including)
E-business_suite	Oracle	11.5 (including)	11.5 (including)
E-business_suite	Oracle	11.6 (including)	11.6 (including)
E-business_suite	Oracle	11.7 (including)	11.7 (including)
E-business_suite	Oracle	11.8 (including)	11.8 (including)

References

http://marc.info/?l=bugtraq\u0026m=105906721920776\u0026w=2
http://otn.oracle.com/deploy/security/pdf/2003alert56.pdf

NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0632
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html