Oracle Products Multiple Vulnerabilities

Last Update Date: 18 Jul 2013 11:53 Release Date: 18 Jul 2013 3418 Views

RISK: High Risk

TYPE: Servers - Other Servers

Multiple vulnerabilities have been identified in Oracle products, which can be exploited by attackers to conduct denial of service, disclose sensitive information, manipulate information.

Impact

Denial of Service
Information Disclosure
Data Manipulation

System / Technologies affected

Oracle Virtualization 4.63, 4.71
Oracle Hyperion 11.1.1.3, 11.1.1.4.107 and prior, 11.1.2.1.129 and prior, 11.1.2.2.305 and prior
Oracle Enterprise Manager - EM Base Platform: 10.2.0.5, 11.1.0.1; EM DB Control: 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, 11.2.0.3; EM Plugin for DB: 12.1.0.2, 12.1.0.3
Oracle PeopleSoft 8.51, 8.52, 8.53, 9.1
Oracle Industry 10.2.0, 10.3.0, 10.3.1, 10.4.0, 10.4.1, 10.4.2
Oracle iLearning 5.2.1, 6.0
Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, 12.1.3
Oracle Supply Chain 9.3.1
Oracle Fusion Middleware
Solaris8, 9, 10, 11

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendor has issued a fix as part of the Oracle Critical Patch Update Advisory - July 2013.

Vulnerability Identifier

CVE-2013-3779
CVE-2013-3782
CVE-2013-3803
CVE-2013-3758
CVE-2013-3791
CVE-2013-3755
CVE-2013-3763
CVE-2013-3764
CVE-2013-3769
CVE-2013-3770
CVE-2013-3772
CVE-2013-3776
CVE-2013-3781
CVE-2013-3816
CVE-2013-3775
CVE-2013-3747
CVE-2013-3749
CVE-2013-3756
CVE-2013-3767
CVE-2013-3777
CVE-2013-3778
CVE-2013-3788
CVE-2013-3822
CVE-2013-3823
CVE-2013-3824
CVE-2013-3825
CVE-2013-0398
CVE-2013-3745
CVE-2013-3746
CVE-2013-3748
CVE-2013-3750
CVE-2013-3752
CVE-2013-3753
CVE-2013-3754
CVE-2013-3757
CVE-2013-3765
CVE-2013-3773
CVE-2013-3786
CVE-2013-3787
CVE-2013-3797
CVE-2013-3799
CVE-2013-3813

Source

SecurityTracker