TA09-015A -- Oracle Updates for Multiple Vulnerabilities

Who's Online Now

0 members (), 562 guests, and 29 robots.

Key: Admin, Global Mod, Mod

ShoutChat

Comment Guidelines: Do post respectful and insightful comments. Don't flame, hate, spam.

KSC PAD 39A

KSC PAD 39B

TLE DATA

IDB.COM.AU
For all your TLE downloads.

May
S	M	T	W	T	F	S
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

Today's Birthdays

There are no members with birthdays on this day.

AUS-CITY Recent Posts

'It almost feels unreal': NASA astronauts excited for 1st crewed Boeing Starliner launch May 6
by Webmaster - Wed 01 May 2024 08:00:PM

NASA prepares for intense sun storms on Mars during 'solar maximum'
by Webmaster - Wed 01 May 2024 07:00:PM

James Webb Space Telescope forecasts clouds of melted rock on this blisteringly hot exoplanet
by Webmaster - Wed 01 May 2024 06:30:PM

A Switzerland-size hole opened in Antarctica's sea ice in 2016-17. Now we know why
by Webmaster - Wed 01 May 2024 06:01:PM

Lego Marvel The Amazing Spider-Man review
by Webmaster - Wed 01 May 2024 05:45:PM

Solar maximum: What is it and when will it occur?
by Webmaster - Wed 01 May 2024 05:00:PM

Yellowstone Lake's weird resistance to climate change could be about to crack
by Webmaster - Wed 01 May 2024 04:00:PM

NASA's James Webb Space Telescope mission — Live updates
by Webmaster - Wed 01 May 2024 03:46:PM

Best sci-fi movies with 90%+ on Rotten Tomatoes
by Webmaster - Wed 01 May 2024 03:29:PM

Astronomers close in on the mystery of the erupting Orion star system (video)
by Webmaster - Wed 01 May 2024 03:00:PM

AUS-CITY Latest Photos

Art By MA
by Alisa, July 27

"5greenheart" by MA
by Alisa, July 27

"3moons" by MA
by Alisa, July 27

Art By MA
by Alisa, July 27

Popular Topics(Views)

4,736,447 The most hated Government Department

3,125,006 UBI, Updates and the rest :-)

840,686 Access to new forum UBI and PBS Private

700,503 CYPRUS SAT ON AIR CH60

519,776 What can we expect of TV Plus ?

511,598 Department of Child Safety's most shameful office

432,752 UBI vs DigiTurk - Turkish Package Changes

347,212 TARBS WAS SCREWED!!!!

339,760 Moderate 4.4 quake hits near Gisborne, Gisborne District, New Zealand

325,831 aussiefrogs.com offline

AUS-CITY Earthquake Map

AUS-CITY Advertisements

Print Thread

Rate Thread

TA09-015A -- Oracle Updates for Multiple Vulnerabilities #43644 Fri 06 Feb 2009 12:38:PM
Joined: Feb 2001 Posts: 3,536 Ontario, Canada VA3DBJ OP Mission Commander
OP VA3DBJ Mission Commander Joined: Feb 2001 Posts: 3,536 Ontario, Canada	National Cyber Alert System Technical Cyber Security Alert TA09-015A Oracle Updates for Multiple Vulnerabilities Original release date: January 15, 2009 Last revised: -- Source: US-CERT Systems Affected * Oracle Database 11g, version 11.1.0.6 * Oracle Database 10g Release 2, versions 10.2.0.2, 10.2.0.3, and 10.2.0.4 * Oracle Database 10g, version 10.1.0.5 * Oracle Database 9i Release 2, versions 9.2.0.8 and 9.2.0.8DV * Oracle Secure Backup, versions 10.1.0.1, 10.1.0.2, 10.1.0.3, 10.2.0.2, and 10.2.0.3 * Oracle TimesTen In-Memory Database, versions 7.0.5.1.0, 7.0.5.2.0, 7.0.5.3.0, and 7.0.5.4.0 * Oracle Application Server 10g Release 3 (10.1.3), version 10.1.3.3.0 * Oracle Application Server 10g Release 2 (10.1.2), versions 10.1.2.2.0 and 10.1.2.3.0 * Oracle Collaboration Suite 10g, version 10.1.2 * Oracle E-Business Suite Release 12, version 12.0.6 * Oracle E-Business Suite Release 11i, version 11.5.10.2 * Oracle Enterprise Manager Grid Control 10g Release 4, version 10.2.0.4 * PeopleSoft Enterprise HRMS, versions 8.9 and 9.0 * JD Edwards Tools, version 8.97 * Oracle WebLogic Server (formerly BEA WebLogic Server) 10.0 released through MP1, 10.3 GA * Oracle WebLogic Server (formerly BEA WebLogic Server) 9.0 GA, 9.1 GA, 9.2 released through MP3 * Oracle WebLogic Server (formerly BEA WebLogic Server) 8.1 released through SP6 * Oracle WebLogic Server (formerly BEA WebLogic Server) 7.0 released through SP7 * Oracle WebLogic Portal (formerly BEA WebLogic Portal) 10.0 released through MP1, 10.2 GA, 10.3 GA * Oracle WebLogic Portal (formerly BEA WebLogic Portal) 9.2 released through MP3 * Oracle WebLogic Portal (formerly BEA WebLogic Portal) 8.1 released through SP6 For more information regarding affected product versions, please see the Oracle Critical Patch Update - January 2009. Overview Oracle products and components are affected by multiple vulnerabilities. The impacts of these vulnerabilities include remote execution of arbitrary code, information disclosure, and denial of service. I. Description The Oracle Critical Patch Update - January 2009 addresses 41 vulnerabilities in different Oracle products and components. The document provides information about affected components, access and authorization required, and the impact from the vulnerabilities on data confidentiality, integrity, and availability. Oracle has associated CVE identifiers with the vulnerabilities addressed in this Critical Patch Update. If significant additional details about vulnerabilities and remediation techniques become available, we will update the Vulnerability Notes Database. II. Impact The impact of these vulnerabilities varies depending on the product, component, and configuration of the system. Potential consequences include the execution of arbitrary code or commands, information disclosure, and denial of service. Vulnerable components may be available to unauthenticated, remote attackers. An attacker who compromises an Oracle database may be able to access sensitive information. III. Solution Apply the appropriate patches or upgrade as specified in the Oracle Critical Patch Update - January 2009. Note that this document only lists newly corrected issues. Updates to patches for previously known issues are not listed. IV. References * Oracle Critical Patch Update for January 2009 - <http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2009.html> * Critical Patch Updates and Security Alerts - <http://www.oracle.com/technology/deploy/security/alerts.htm> * Map of Public Vulnerability to Advisory/Alert - <http://www.oracle.com/technology/deploy/security/pdf/public_vuln_to_advisory_mapping.html> ____________________________________________________________________ The most recent version of this document can be found at: <http://www.us-cert.gov/cas/techalerts/TA09-015A.html> ____________________________________________________________________ Feedback can be directed to US-CERT Technical Staff. Please send email to <cert@cert.org> with "TA09-015A Feedback VU#897316" in the subject. ____________________________________________________________________ For instructions on subscribing to or unsubscribing from this mailing list, visit <http://www.us-cert.gov/cas/signup.html>. ____________________________________________________________________ Produced 2009 by US-CERT, a government organization. Terms of use: <http://www.us-cert.gov/legal.html> ____________________________________________________________________ Revision History January 15, 2009: Initial release