Oracle Products Multiple Vulnerabilities
Last Update Date:
21 Jan 2015 10:39
Release Date:
21 Jan 2015
3439
Views
RISK: High Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in Oracle Products.
- Multiple vulnerabilities were identified in Oracle Fusion Middleware. A remote user can gain elevated privileges, partially access and modify data on the target system. A remote or local user can cause partial denial of service conditions.
- Several vulnerabilities were identified in Oracle WebLogic. A remote user can cause partial denial of service conditions, partially access and partially modify data on the target system.
- Multiple vulnerabilities were identified in Oracle Database. A remote authenticated user can gain elevated privileges, access data and partially modify data on the target system, and cause denial of service conditions.
- Multiple vulnerabilities were identified in Oracle Java SE. A remote or local user can obtain elevated privileges, partially access and modify data on the target system, cause partial denial of service conditions.
- Multiple vulnerabilities were identified in Oracle Solaris. A remote authenticated or local user can obtain elevated privileges on the target system. A remote user can partially access data and cause partial denial of service conditions. A local user can cause denial of service conditions. A remote or local user can partially access and modify data on the target system.
Impact
- Denial of Service
- Elevation of Privilege
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Oracle Fusion Middleware, version(s) 10.1.3.5, 11.1.1.7, 11.1.2.1, 11.1.2.2, 12.1.2, 12.1.3
- Oracle WebLogic Server, version(s) 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, 12.1.3.0
- Oracle Database Server, version(s) 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, 12.1.0.2
- Oracle Java SE, version(s) 5.0u75, 6u85, 7u72, 8u25
- Solaris, version(s) 10, 11
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- The vendor's advisory is available at:
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Vulnerability Identifier
- CVE-2003-0001
- CVE-2011-3389
- CVE-2013-1741
- CVE-2013-2186
- CVE-2013-4286
- CVE-2014-0114
- CVE-2014-0224
- CVE-2014-4259
- CVE-2014-6480
- CVE-2014-6481
- CVE-2014-6509
- CVE-2014-6510
- CVE-2014-6514
- CVE-2014-6518
- CVE-2014-6521
- CVE-2014-6524
- CVE-2014-6526
- CVE-2014-6541
- CVE-2014-6548
- CVE-2014-6549
- CVE-2014-6567
- CVE-2014-6569
- CVE-2014-6570
- CVE-2014-6575
- CVE-2014-6576
- CVE-2014-6577
- CVE-2014-6578
- CVE-2014-6580
- CVE-2014-6585
- CVE-2014-6587
- CVE-2014-6591
- CVE-2014-6592
- CVE-2014-6593
- CVE-2014-6600
- CVE-2014-6601
- CVE-2015-0362
- CVE-2015-0367
- CVE-2015-0370
- CVE-2015-0371
- CVE-2015-0372
- CVE-2015-0373
- CVE-2015-0375
- CVE-2015-0376
- CVE-2015-0378
- CVE-2015-0383
- CVE-2015-0389
- CVE-2015-0395
- CVE-2015-0397
- CVE-2015-0399
- CVE-2015-0400
- CVE-2015-0401
- CVE-2015-0403
- CVE-2015-0406
- CVE-2015-0407
- CVE-2015-0408
- CVE-2015-0410
- CVE-2015-0412
- CVE-2015-0413
- CVE-2015-0414
- CVE-2015-0420
- CVE-2015-0421
- CVE-2015-0428
- CVE-2015-0429
- CVE-2015-0430
- CVE-2015-0434
- CVE-2015-0437
Source
Related Link
Share with