exploits , vulnerabilities , articles , Oracle January 2008 Critical Patch Update Multiple Vulnerabilities

Title	Oracle January 2008 Critical Patch Update Multiple Vulnerabilities
Published	2008-01-10-12:00AM
Updated	2008-01-30-06:47PM
Class	Unknown
CVE
Remote	Yes
Local	Yes
Credit	The vendor credits the following with the discovery of these vulnerabilities: CERT/CC; Esteban Martinez Fayo of Application Security, Inc.; Pete Finnigan; Joxean Koret; Alexander Kornbrust of Red Database Security; Ali Kumcu of inTellectPro; David Litchfi
Vulnerable	Oracle PeopleSoft Enterprise PeopleTools 8.49 Oracle PeopleSoft Enterprise PeopleTools 8.48 Oracle PeopleSoft Enterprise PeopleTools 8.47 Oracle PeopleSoft Enterprise PeopleTools 8.22 Oracle Oracle9i Standard Edition 9.2 .8DV Oracle Oracle9i Standard Edition 9.2 .8 Oracle Oracle9i Personal Edition 9.2 .8DV Oracle Oracle9i Personal Edition 9.2 .8 Oracle Oracle9i Enterprise Edition 9.2 .8DV Oracle Oracle9i Enterprise Edition 9.2 .8 Oracle Oracle11g Standard Edition One 11.1 6 Oracle Oracle11g Standard Edition 11.1 6 Oracle Oracle11g Enterprise Edition 11.1 6 Oracle Oracle10g Standard Edition 10.2 .3 Oracle Oracle10g Standard Edition 10.2 .2 Oracle Oracle10g Standard Edition 10.1 .5 Oracle Oracle10g Personal Edition 10.2 .3 Oracle Oracle10g Personal Edition 10.2 .2 Oracle Oracle10g Personal Edition 10.1 .5 Oracle Oracle10g Enterprise Edition 10.2 .3 Oracle Oracle10g Enterprise Edition 10.2 .2 Oracle Oracle10g Enterprise Edition 10.1 .5 Oracle Oracle10g Application Server 10.1.3 .3.0 Oracle Oracle10g Application Server 10.1.3 .2.0 Oracle Oracle10g Application Server 10.1.3 .1.0 Oracle Oracle10g Application Server 10.1.3 .0.0 Oracle Oracle10g Application Server 10.1.2 .2.0 Oracle Oracle10g Application Server 10.1.2 .1.0 Oracle Oracle10g Application Server 10.1.2 .0.2 Oracle Oracle10g Application Server 10.1.2 .0.1 Oracle Oracle10g Application Server 9.0.4 3 Oracle Enterprise Manager Grid Control 10g 10.1 6 Oracle Enterprise Manager Grid Control 10g 10.1 .5 Oracle Enterprise Manager Database Control 10g 10.2.0.3 Oracle Enterprise Manager Database Control 10g 10.2.0.2 Oracle Enterprise Manager Database Control 10g 10.1.0.5 Oracle EBusiness Suite 12 12.0.3 Oracle EBusiness Suite 12 12.0.2 Oracle EBusiness Suite 12 12.0.1 Oracle EBusiness Suite 12 12.0 Oracle EBusiness Suite 11i 11.5.10 CU2 Oracle EBusiness Suite 11i 11.5.10 Oracle EBusiness Suite 11i 11.5.9 Oracle EBusiness Suite 11i 11.5.8 Oracle Collaboration Suite 10g 10.1.2
Not Vulnerable
Code	Some of these issues may not require specific exploit code and may be trivial to exploit.The following exploits are available: /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_DROP.sql /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_DROP-2.sql /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_TRUNCATE.sql /data/vulnerabilities/exploits/27229-XDB_PITRIG_PKG.PITRIG_TRUNCATE-2.sql
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-17 GNU Automake Insecure Directory Permissions Vulnerability
• 2009-12-17 Mozilla Firefox CVE-2009-3979 Multiple Remote Memory Corruption Vulnerabilities
• 2009-12-17 Mozilla Firefox CVE-2009-3981 Remote Memory Corruption Vulnerability
• 2009-12-17 Drupal Sections Module HTML Injection Vulnerability
• 2009-12-17 Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
• 2009-12-17 Mozilla Firefox and Sea Monkey Insecure Protocol Location Bar Spoofing Vulnerability
• 2009-12-17 Mozilla Firefox and Sea Monkey Content Injection Spoofing Vulnerability
• 2009-12-17 Mozilla Firefox/SeaMonkey GeckoActiveXObject Exception Message COM Object Enumeration Vulnerability
• 2009-12-16 ZABBIX Denial Of Service and SQL Injection Vulnerabilities
• 2009-12-16 IBM WebSphere Application Server JNDI Remote Information Disclosure Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Thu, 17 Dec 2009 18:25:43 +0000