Oracle Products Multiple vulnerabilities
Last Update Date:
16 Oct 2014 14:37
Release Date:
16 Oct 2014
4043
Views
RISK: High Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities have been identified in various Oracle products and components, which could be exploited by attackers to denial of service, escalation of privilege, sensitive information disclosure and data tampering.
Impact
- Denial of Service
- Elevation of Privilege
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Oracle Database 11g Release 1, version 11.1.0.7
- Oracle Database 11g Release 2, versions 11.2.0.3, 11.2.0.4
- Oracle Database 12c Release 1, versions 12.1.0.1, 12.1.0.2
- Oracle Application Express, versions prior to 4.2.6
- Oracle Fusion Middleware 11g Release 1, versions 11.1.1.5, 11.1.1.7
- Oracle Fusion Middleware 11g Release 2, versions 11.1.2.1, 11.1.2.2, 11.1.2.4
- Oracle Fusion Middleware 12c, versions 12.1.1.0, 12.1.2.0, 12.1.3.0
- Oracle Fusion Applications, versions 11.1.2 through 11.1.8
- Oracle Access Manager, versions 11.1.1.5, 11.1.1.7, 11.1.2.1, 11.1.2.2
- Oracle Adaptive Access Manager, versions 11.1.1.5, 11.1.1.7, 11.1.2.1, 11.1.2.2
- Oracle Endeca Information Discovery Studio versions 2.2.2, 2.3, 2.4, 3.0, 3.1
- Oracle Enterprise Data Quality versions 8.1.2, 9.0.11
- Oracle Identity Manager, versions 11.1.1.5, 11.1.1.7, 11.1.2.1, 11.1.2.2
- Oracle JDeveloper, versions 10.1.3.5, 11.1.1.7, 11.1.2.4, 12.1.2.0, 12.1.3.0
- Oracle OpenSSO version 3.0-04
- Oracle WebLogic Server, versions 10.0.2, 10.3.6, 12.1.1, 12.1.2, 12.1.3
- Application Performance Management, versions prior to 12.1.0.6.2
- Enterprise Manager for Oracle Database Releases 10g, 11g, 12c
- Oracle E-Business Suite Release 11i version 11.5.10.2
- Oracle E-Business Suite Release 12 versions 12.0.4, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, 12.2.4
- Oracle Agile PLM, versions 9.3.1.2, 9.3.3
- Oracle Transportation Management, versions 6.1, 6.2, 6.3.0 through 6.3.5
- Oracle PeopleSoft Enterprise HRMS, version 9.2
- Oracle PeopleSoft Enterprise PeopleTools, versions 8.52, 8.53, 8.54
- Oracle JD Edwards EnterpriseOne Tools, version 8.98
- Oracle Communications MetaSolv Solution, versions MetaSolv Solution: 6.2.1.0.0, LSR: 9.4.0, 10.1.0, ASR: 49.0.0
- Oracle Communications Session Border Controller, version SCX640m5
- Oracle Retail Allocation, versions 10.0, 11.0, 12.0, 13.0, 13.1, 13.2
- Oracle Retail Clearance Optimization Engine, versions 13.3, 13.4, 14.0
- Oracle Retail Invoice Matching, versions 11.0, 12.0, 12.0 IN, 12.1, 13.0, 13.1, 13.2, 14.0
- Oracle Retail Markdown Optimization, versions 12.0, 13.0, 13.1, 13.2, 13.4
- Oracle Health Sciences Empirica Inspections, versions 1.0.1.0 and prior
- Oracle Health Sciences Empirica Signal, versions 7.3.3.3 and prior
- Oracle Health Sciences Empirica Study, versions 3.1.2.0 and prior
- Oracle Primavera Contract Management, versions 13.1, 14.0
- Oracle Primavera P6 Enterprise Project Portfolio Management, versions 7.0, 8.1, 8.2, 8.3
- Oracle JavaFX, version 2.2.65
- Oracle Java SE, versions 5.0u71, 6u81, 7u67, 8u20
- Oracle Java SE Embedded, version 7u60
- Oracle JRockit, versions R27.8.3, R28.3.3
- Oracle Fujitsu server, versions M10-1, M10-4, M10-4S
- Oracle Solaris, versions 10, 11
- Oracle Secure Global Desktop, versions 4.63, 4.71, 5.0, 5.1
- Oracle VM VirtualBox, versions prior to 4.1.34, 4.2.26, 4.3.14
- Oracle MySQL Server, versions 5.5.39 and earlier, 5.6.20 and earlier
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Apply Oracle Critical Patch Update - October 2014
Vulnerability Identifier
- CVE-2012-5615
- CVE-2013-1741
- CVE-2014-0050
- CVE-2014-0114
- CVE-2014-0119
- CVE-2014-0224
- CVE-2014-2472
- CVE-2014-2473
- CVE-2014-2474
- CVE-2014-2475
- CVE-2014-2476
- CVE-2014-2478
- CVE-2014-2880
- CVE-2014-4274
- CVE-2014-4275
- CVE-2014-4276
- CVE-2014-4277
- CVE-2014-4278
- CVE-2014-4280
- CVE-2014-4281
- CVE-2014-4282
- CVE-2014-4283
- CVE-2014-4284
- CVE-2014-4285
- CVE-2014-4287
- CVE-2014-4288
- CVE-2014-4289
- CVE-2014-4290
- CVE-2014-4291
- CVE-2014-4292
- CVE-2014-4293
- CVE-2014-4294
- CVE-2014-4295
- CVE-2014-4296
- CVE-2014-4297
- CVE-2014-4298
- CVE-2014-4299
- CVE-2014-4300
- CVE-2014-4301
- CVE-2014-4310
- CVE-2014-6452
- CVE-2014-6453
- CVE-2014-6454
- CVE-2014-6455
- CVE-2014-6456
- CVE-2014-6457
- CVE-2014-6458
- CVE-2014-6459
- CVE-2014-6462
- CVE-2014-6463
- CVE-2014-6464
- CVE-2014-6466
- CVE-2014-6467
- CVE-2014-6468
- CVE-2014-6469
- CVE-2014-6470
- CVE-2014-6471
- CVE-2014-6472
- CVE-2014-6473
- CVE-2014-6474
- CVE-2014-6476
- CVE-2014-6478
- CVE-2014-6479
- CVE-2014-6483
- CVE-2014-6484
- CVE-2014-6485
- CVE-2014-6487
- CVE-2014-6489
- CVE-2014-6490
- CVE-2014-6491
- CVE-2014-6492
- CVE-2014-6493
- CVE-2014-6494
- CVE-2014-6495
- CVE-2014-6496
- CVE-2014-6497
- CVE-2014-6499
- CVE-2014-6500
- CVE-2014-6501
- CVE-2014-6502
- CVE-2014-6503
- CVE-2014-6504
- CVE-2014-6505
- CVE-2014-6506
- CVE-2014-6507
- CVE-2014-6508
- CVE-2014-6511
- CVE-2014-6512
- CVE-2014-6513
- CVE-2014-6515
- CVE-2014-6517
- CVE-2014-6519
- CVE-2014-6520
- CVE-2014-6522
- CVE-2014-6523
- CVE-2014-6527
- CVE-2014-6529
- CVE-2014-6530
- CVE-2014-6531
- CVE-2014-6532
- CVE-2014-6534
- CVE-2014-6537
- CVE-2014-6538
- CVE-2014-6539
- CVE-2014-6540
- CVE-2014-6542
- CVE-2014-6544
- CVE-2014-6545
- CVE-2014-6546
- CVE-2014-6547
- CVE-2014-6550
- CVE-2014-6551
- CVE-2014-6552
- CVE-2014-6553
- CVE-2014-6554
- CVE-2014-6555
- CVE-2014-6558
- CVE-2014-6559
- CVE-2014-6560
- CVE-2014-6561
- CVE-2014-6562
- CVE-2014-6563
- CVE-2014-6564
Source
Related Link
Share with