Oracle Products Multiple Vulnerabilies

Impact

• Remote Code Execution

System / Technologies affected

• Oracle Database 11g Release 2, version 11.2.0.2
• Oracle Database 11g Release 1, version 11.1.0.7
• Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5
• Oracle Database 10g Release 1, version 10.1.0.5
• Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0, 11.1.1.4.0, 11.1.1.5.0
• Oracle Application Server 10g Release 3, version 10.1.3.5.0
• Oracle Application Server 10g Release 2, version 10.1.2.3.0
• Oracle Business Intelligence Enterprise Edition, versions 11.1.1.3, 11.1.1.5
• Oracle Identity Management 10g, versions 10.1.4.0.1, 10.1.4.3
• Oracle Outside In Technology, versions 8.3.5, 8.3.7
• Oracle WebLogic Portal, versions 9.2.3.0, 10.0.1.0, 10.2.1.0, 10.3.2.0
• Oracle WebLogic Server, versions 9.2.4, 10.0.2, 11gR1 (10.3.3, 10.3.4, 10.3.5)
• Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.2, 12.1.3
• Oracle E-Business Suite Release 11i, version 11.5.10.2
• Oracle Agile Product Supplier Collaboration for Process, versions 5.2.2, 6.0.0.2, 6.0.0.3, 6.0.0.4
• Oracle PeopleSoft Enterprise HRMS, versions 8.9, 9.0, 9.1
• Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51
• Oracle Siebel CRM Core and Apps, versions 8.0.0, 8.1.1
• Oracle Clinical, Remote Data Capture, versions 4.6, 4.6.2
• Oracle Thesaurus Management System, versions 4.6.1, 4.6.2
• Oracle Sun Product Suite
• Oracle Linux 5
• Oracle Sun Ray

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

• Apply Oracle Critical Patch Update - October 2011
  http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html

Vulnerability Identifier

• No CVE information is available

Source

• Oracle

Related Link

• http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html