Skip to main content

Oracle Products and Components Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 14 Apr 2010 5370 Views

RISK: Medium Risk

Multiple vulnerabilities have been identified in Oracle product and components, which could be exploited by attackers to gain knowledge of sensitive information, cause a denial of service or compromise a vulnerable system.


Impact

  • Denial of Service
  • Remote Code Execution
  • Information Disclosure

System / Technologies affected

  • Oracle Database 11g, versions 11.1.0.7 and 11.2.0.1
  • Oracle Database 10g Release 2, versions 10.2.0.3 and 10.2.0.4
  • Oracle Database 10g, version 10.1.0.5
  • Oracle Database 9i Release 2, versions 9.2.0.8 and 9.2.0.8DV
  • Oracle Application Server 10gR2, version 10.1.2.3.0
  • Oracle Identity Management 10g, version 10.1.4.0.1 and 10.1.4.3
  • Oracle Collaboration Suite 10g, version 10.1.2.4
  • Oracle E-Business Suite Release 12, versions 12.0.4, 12.0.5, 12.0.6, 12.1.1 and 12.1.2
  • Oracle E-Business Suite Release 11i, versions 11.5.10 and 11.5.10.2
  • Oracle Transportation Manager, versions 5.5.05.07, 5.5.06.00, and 6.0.03
  • Oracle Agile - Engineering Data Management, version 6.1.1.0
  • PeopleSoft Enterprise PeopleTools, versions 8.49 and 8.50
  • Oracle Communications Unified Inventory Management version 7.1
  • Oracle Clinical Remote Data Capture Option versions 4.5.3 and 4.6
  • Oracle Thesaurus Management System versions 4.5.2, 4.6 and 4.6.1
  • Oracle Retail Markdown Optimization version 13.1
  • Oracle Retail Place In-Season version 12.2
  • Oracle Retail Plan In-Season version 12.2
  • Oracle Sun Products Suite

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Download locations for this patch

Apply the Oracle Critical Patch Update Advisory - April 2010 :
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2010.html


Vulnerability Identifier

  • No CVE information is available

Source