Oracle Database Core RDBMS Multiple Vulnerabilities

Last Update Date: 16 Jul 2014 09:33 Release Date: 16 Jul 2014 3143 Views

RISK: Medium Risk

TYPE: Servers - Database Servers

Multiple vulnerabilities were identified in Oracle Database. A remote authenticated user can partially access and modify data on the target system, and cause denial of service conditions.

Impact

Denial of Service
Information Disclosure
Data Manipulation

System / Technologies affected

Version 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued a fix as part of Oracle Critical Patch Update Advisory - July 2014.
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Vulnerability Identifier

CVE-2014-4236
CVE-2014-4237
CVE-2014-4245

Source

SecurityTracker
Oracle