exploits , vulnerabilities , articles , Oracle January 2008 Critical Patch Update Multiple Vulnerabilities

Title	Oracle January 2008 Critical Patch Update Multiple Vulnerabilities
Published	2008-01-10-12:00AM
Updated	2008-01-30-06:47PM
Class	Unknown
CVE
Remote	Yes
Local	Yes
Credit	The vendor credits the following with the discovery of these vulnerabilities: CERT/CC; Esteban Martinez Fayo of Application Security, Inc.; Pete Finnigan; Joxean Koret; Alexander Kornbrust of Red Database Security; Ali Kumcu of inTellectPro; David Litchfi
Vulnerable	Oracle PeopleSoft Enterprise PeopleTools 8.49 Oracle PeopleSoft Enterprise PeopleTools 8.48 Oracle PeopleSoft Enterprise PeopleTools 8.47 Oracle PeopleSoft Enterprise PeopleTools 8.22 Oracle Oracle9i Standard Edition 9.2 .8DV Oracle Oracle9i Standard Edition 9.2 .8 Oracle Oracle9i Personal Edition 9.2 .8DV Oracle Oracle9i Personal Edition 9.2 .8 Oracle Oracle9i Enterprise Edition 9.2 .8DV Oracle Oracle9i Enterprise Edition 9.2 .8 Oracle Oracle11g Standard Edition One 11.1 6 Oracle Oracle11g Standard Edition 11.1 6 Oracle Oracle11g Enterprise Edition 11.1 6 Oracle Oracle10g Standard Edition 10.2 .3 Oracle Oracle10g Standard Edition 10.2 .2 Oracle Oracle10g Standard Edition 10.1 .5 Oracle Oracle10g Personal Edition 10.2 .3 Oracle Oracle10g Personal Edition 10.2 .2 Oracle Oracle10g Personal Edition 10.1 .5 Oracle Oracle10g Enterprise Edition 10.2 .3 Oracle Oracle10g Enterprise Edition 10.2 .2 Oracle Oracle10g Enterprise Edition 10.1 .5 Oracle Oracle10g Application Server 10.1.3 .3.0 Oracle Oracle10g Application Server 10.1.3 .2.0 Oracle Oracle10g Application Server 10.1.3 .1.0 Oracle Oracle10g Application Server 10.1.3 .0.0 Oracle Oracle10g Application Server 10.1.2 .2.0 Oracle Oracle10g Application Server 10.1.2 .1.0 Oracle Oracle10g Application Server 10.1.2 .0.2 Oracle Oracle10g Application Server 10.1.2 .0.1 Oracle Oracle10g Application Server 9.0.4 3 Oracle Enterprise Manager Grid Control 10g 10.1 6 Oracle Enterprise Manager Grid Control 10g 10.1 .5 Oracle Enterprise Manager Database Control 10g 10.2.0.3 Oracle Enterprise Manager Database Control 10g 10.2.0.2 Oracle Enterprise Manager Database Control 10g 10.1.0.5 Oracle EBusiness Suite 12 12.0.3 Oracle EBusiness Suite 12 12.0.2 Oracle EBusiness Suite 12 12.0.1 Oracle EBusiness Suite 12 12.0 Oracle EBusiness Suite 11i 11.5.10 CU2 Oracle EBusiness Suite 11i 11.5.10 Oracle EBusiness Suite 11i 11.5.9 Oracle EBusiness Suite 11i 11.5.8 Oracle Collaboration Suite 10g 10.1.2
Not Vulnerable
Code	Some of these issues may not require specific exploit code and may be trivial to exploit.The following exploits are available: /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_DROP.sql /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_DROP-2.sql /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_TRUNCATE.sql /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_TRUNCATE-2.sql
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-11-22 KVIrc URI Handler Remote Command Execution Vulnerability
• 2008-11-22 NVIDIA Cg Toolkit Installer Insecure Temporary File Creation Vulnerability
• 2008-11-22 TkUsr Insecure Temporary File Creation Vulnerability
• 2008-11-21 TAU Tuning and Analysis Utilities Insecure Temporary File Creation Vulnerabilities
• 2008-11-21 Maildirsync Insecure Temporary File Creation Vulnerability
• 2008-11-21 TkMan Insecure Temporary File Creation Vulnerability
• 2008-11-21 Apple iPhone Configuration Web Utility for Windows Directory Traversal Vulnerability
• 2008-11-21 Cisco IOS and CatOS VLAN Trunking Protocol Packet Handling Denial Of Service Vulnerability
• 2008-11-21 vBulletin Visitor Messages Addon Comment Notification HTML Injection Vulnerability
• 2008-11-21 Apple Mac OS X CoreGraphics Multiple Memory Corruption Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Sat, 22 Nov 2008 23:08:07 +0000