Oracle Applications 11i Encrypted Password String Disclosure (PDF): An undisclosed security vulnerability exists in Oracle Applications 11i that may allow an unauthenticated, internal attacker to obtain Oracle Applications’ user account encrypted password strings, which in turn can be decrypted using previously published information. An attacker can potentially obtain either any user’s password or the Oracle […]

We are in the process of upgrading our Oracle E-Business Suite (EBS) from 11.0.3 to 11.5.10 (more on that later). So, I frequently visit the EBS Electronic Technical Reference Manual (eTRM) to browse and try to understand the data models, database design and APIs of some EBS modules. When I logged in this morning I […]

Johan Louwers published an Oracle Applications passwords decryption vulnerability that allows a malicious user to expose the passwords of any Oracle Applications user. In Oracle E-Business Suite, usernames and their encrypted passwords are stored in the table fnd_user:

SQL> desc fnd_user; Name […]

Steven Chan has just published a couple of useful posts. The first is a high level map of Oracle’s latest E-Business Suite Release 11i technology stack architecture:

The second is a cheat sheet that explains the relationships between Oracle marketing brands, products, product families, versions, and patchsets. He gives simple term definition to the following:

Oracle E-Business […]

Google recently announced the addition of OneBox functionality to their search appliance, which means that you can find just about anything through the familiar Google search box, including information stored in your corporate ERP system.

Google launched an initial set of OneBox modules with Oracle, Cognos, SAS and Salesforce.com.

According to Oracle, If you are an Oracle […]

With the Oracle E-Business Suite release 11.5.10, the Oracle has introduced a mechanism which revolutionizes the way the forms can be customized to fulfill the customer needs. For many years, Oracle Applications has provided a custom library using which the look and behavior of the standard forms can be altered, but the custom library modifications […]