製品・ソフトウェアに関する情報

JVN脆弱性詳細

Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性

Title	Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne における脆弱性
Summary	Oracle PeopleSoft Enterprise および JD Edwards EnterpriseOne の JDE EnterpriseOne Business Service サーバコンポーネントには、機密性および完全性に影響を受ける脆弱性が存在します。
Possible impacts	ローカルユーザにより、情報が漏えいする、あるいは情報を改ざんされる可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	Oct. 14, 2008, midnight
Registration Date	Sept. 25, 2012, 5:17 p.m.
Last Update	Sept. 25, 2012, 5:17 p.m.

Affected System

オラクル

Oracle PeopleSoft Products

jdedwards

enterpriseone 8.97.2.2 および 8.98.0.1

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2008-4004	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4004
National Vulnerability Database (NVD)
2	CVE-2008-4004	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4004

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-noinfo	https://www.ipa.go.jp/security/vuln/CWE.html#CWEnoinfo

ベンダー情報

No	Name	URL
jdedwards
1	JD Edwards EnterpriseOne	http://www.oracle.com/jp/products/applications/jd-edwards-world/overview/index.html
Oracle
2	JD Edwards EnterpriseOne	http://www.oracle.com/us/products/applications/jd-edwards-enterpriseone/018722.htm
3	Oracle PeopleSoft Applications	http://www.oracle.com/us/products/applications/peoplesoft-enterprise/overview/index.html

Change Log

No	Changed Details	Date of change
0	[2012年09月25日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2008-4004

Summary	Unspecified vulnerability in the JDE EnterpriseOne Business Service Server component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.97.2.2 and 8.98.0.1 allows local users to affect confidentiality and integrity via unknown vectors.
Summary	Una vulnerabilidad sin especificar en el componente JDE EnterpriseOne Business Service Server de Oracle PeopleSoft Enterprise, y de JD Edwards EnterpriseOne 8.97.2.2 y 8.98.0.1 permite a un usuario local comprometer la integridad de los datos por medio de un ataque desconocido.
Publication Date	Oct. 15, 2008, 6:11 a.m.
Registration Date	Jan. 29, 2021, 1:41 p.m.
Last Update	April 23, 2026, 9:35 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:jdedwards:enterpriseone:8.97.2.2:::::::*
cpe:2.3:a:jdedwards:enterpriseone:8.98.0.1:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise:8.97.2.2:::::::*
cpe:2.3:a:oracle:peoplesoft_enterprise:8.98.0.1:::::::*

Related information, measures and tools

No	URL	refsource
1	http://secunia.com/advisories/32291	secalert_us@oracle.com
2	http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html	secalert_us@oracle.com
3	http://www.securitytracker.com/id?1021055	secalert_us@oracle.com
4	http://www.vupen.com/english/advisories/2008/2825	secalert_us@oracle.com
5	https://exchange.xforce.ibmcloud.com/vulnerabilities/45906	secalert_us@oracle.com
6	http://secunia.com/advisories/32291	af854a3a-2127-422b-91ae-364da2661108
7	http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html	af854a3a-2127-422b-91ae-364da2661108
8	http://www.securitytracker.com/id?1021055	af854a3a-2127-422b-91ae-364da2661108
9	http://www.vupen.com/english/advisories/2008/2825	af854a3a-2127-422b-91ae-364da2661108
10	https://exchange.xforce.ibmcloud.com/vulnerabilities/45906	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List