Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows remote authenticated users to affect confidentiality via unknown vectors.
http://www.us-cert.gov/cas/techalerts/TA09-294A.html
http://www.securitytracker.com/id?1023059
http://www.securityfocus.com/bid/36764
http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html