Oracle Products Multiple vulnerabilities

Last Update Date: 18 Oct 2012 14:45 Release Date: 18 Oct 2012 4196 Views

RISK: High Risk

High Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

Multiple vulnerabilities have been identified in various Oracle products and components, which could be exploited by attackers to conduct cross-site scripting attacks, denial of service, bypass security restriction, disclose sensitive information and tampering.

 

Impact

  • Cross-Site Scripting
  • Denial of Service
  • Security Restriction Bypass
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • Oracle Database 11g Release 2, versions 11.2.0.2, 11.2.0.3
  • Oracle Database 11g Release 1, version 11.1.0.7
  • Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5
  • Oracle Fusion Middleware 11g Release 1, version 11.1.1.6
  • Oracle Forms and Reports 11g, Release 2, version 11.1.2.0
  • Oracle Forms and Reports 11g Release 1, version 11.1.1.4
  • Oracle BI Publisher, versions 10.1.3.4.2, 11.1.1.5.0, 11.1.1.6.0, 11.1.1.6.2
  • Oracle Event Processing, versions 2.0, 11.1.1.4.0, 11.1.1.6.0
  • Oracle Identity Management 10g, version 10.1.4.3
  • Oracle Imaging and Process Management, version 10.1.3.6.0
  • Oracle JRockit versions, R28.2.4 and earlier, R27.7.3 and earlier
  • Oracle Outside In Technology, version 8.3.7
  • Oracle WebLogic Server, versions 9.2.4.0, 10.0.2.0, 10.3.5.0, 10.3.6.0, 12.1.1.0
  • Oracle WebCenter Sites, versions 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, 11.1.1.6.0
  • Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3
  • Oracle E-Business Suite Release 11i, version 11.5.10.2
  • Oracle Agile PLM For Process, versions 5.2.2, 6.0.0.6.3, 6.1.0.0, 6.1.0.1.14
  • Oracle Agile PLM Framework, versions 9.3.1.0, 9.3.1.1
  • Oracle Agile Product Supplier Collaboration for Process, versions 5.2.2, 6.1.0.0
  • Oracle PeopleSoft Enterprise Campus Solutions, version 9.0
  • Oracle PeopleSoft Enterprise PeopleTools, versions 8.50, 8.51, 8.52
  • Oracle Siebel UI Framework, version 8.1.1 Oracle Central Designer, versions 1.3, 1.4, 1.4.2
  • Oracle Clinical/Remote Data Capture, versions 4.6.0, 4.6.2
  • Oracle FLEXCUBE Direct Banking, versions 5.0.2, 5.0.5, 5.1.0, 5.2.0, 5.3.0-5.3.4, 6.0.1, 6.2.0, 12
  • Oracle FLEXCUBE Universal Banking, versions 10.0.0-10.5.0, 11.0.0-11.4.0, 12
  • Oracle Sun Product Suite Oracle Secure Global Desktop, version 4.6
  • Oracle VM Virtual Box, versions 3.2, 4.0, 4.1
  • Oracle MySQL Server, versions 5.1.63 and earlier, 5.5.25 and earlier

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Apple Mac OS X Java Multiple Vulnerabilities

18 Oct 2012 4097 Views

Next

Oracle Java Multiple Vulnerabilities

18 Oct 2012 4685 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY