F-Secure
Tools
Oracle Products Multiple Vulnerabilities
| Report ID: | SA32291 |
| Source: | Secunia |
| Date of Discovery: | 15.10.2008 |
| Criticality: | Moderate |
| Affects: | JD Edwards EnterpriseOne Tools 8.x Oracle Application Server 10g Oracle Database 10.x Oracle Database 11.x Oracle E-Business Suite 11i Oracle E-Business Suite 12.x Oracle PeopleSoft Enterprise Portal Solutions 8.x Oracle9i Database Enterprise Edition Oracle9i Database Standard Edition PeopleSoft PeopleTools 8.x |
| Compromise From: | From remote |
| Compromise Type: | Unknown |
Summary
Some vulnerabilities with unknown impacts have been reported in various Oracle products.
Detailed Description
Some vulnerabilities with unknown impacts have been reported in various Oracle products.
The vulnerabilities are caused due to unspecified errors. No more information is currently available.
The vulnerabilities are reported in the following products and versions:
* Oracle Database 11g, version 11.1.0.6
* Oracle Database 10g Release 2, versions 10.2.0.2, 10.2.0.3, 10.2.0.4
* Oracle Database 10g, version 10.1.0.5
* Oracle Database 9i Release 2, versions 9.2.0.8, 9.2.0.8DV
* Oracle Application Server 10g Release 3 (10.1.3), versions 10.1.3.3.0,10.1.3.4.0
* Oracle Application Server 10g Release 2 (10.1.2), versions 10.1.2.2.0, 10.1.2.3.0
* Oracle Application Server 10g (9.0.4), version 9.0.4.3
* Oracle E-Business Suite Release 12, version 12.0.4
* Oracle E-Business Suite Release 11i, version 11.5.10.2
* Oracle PeopleSoft Enterprise PeopleTools versions 8.48.18, 8.49.14
* Oracle PeopleSoft Enterprise Portal versions 8.9, 9.0
* Oracle JD Edwards EnterpriseOne Tools versions 8.97, 8.98
* Oracle Application Server 9i Release 1, version 1.0.2.2
The vulnerabilities are caused due to unspecified errors. No more information is currently available.
The vulnerabilities are reported in the following products and versions:
* Oracle Database 11g, version 11.1.0.6
* Oracle Database 10g Release 2, versions 10.2.0.2, 10.2.0.3, 10.2.0.4
* Oracle Database 10g, version 10.1.0.5
* Oracle Database 9i Release 2, versions 9.2.0.8, 9.2.0.8DV
* Oracle Application Server 10g Release 3 (10.1.3), versions 10.1.3.3.0,10.1.3.4.0
* Oracle Application Server 10g Release 2 (10.1.2), versions 10.1.2.2.0, 10.1.2.3.0
* Oracle Application Server 10g (9.0.4), version 9.0.4.3
* Oracle E-Business Suite Release 12, version 12.0.4
* Oracle E-Business Suite Release 11i, version 11.5.10.2
* Oracle PeopleSoft Enterprise PeopleTools versions 8.48.18, 8.49.14
* Oracle PeopleSoft Enterprise Portal versions 8.9, 9.0
* Oracle JD Edwards EnterpriseOne Tools versions 8.97, 8.98
* Oracle Application Server 9i Release 1, version 1.0.2.2
Solution
Apply patches (see the vendor's advisory).
CVE Reference
CVE-2008-3980
CVE-2008-2619
CVE-2008-3990
CVE-2008-3985
CVE-2008-3989
CVE-2008-3992
CVE-2008-3994
CVE-2008-4003
CVE-2008-4004
CVE-2008-2624
CVE-2008-2588
CVE-2008-3993
CVE-2008-3991
CVE-2008-4001
CVE-2008-3975
CVE-2008-3987
CVE-2008-4005
CVE-2008-3995
CVE-2008-3977
CVE-2008-3982
CVE-2008-3986
CVE-2008-3983
CVE-2008-3976
CVE-2008-3998
CVE-2008-4000
CVE-2008-4002
CVE-2008-3996
CVE-2008-2625
CVE-2008-3984
CVE-2008-3988
CVE-2008-2619
CVE-2008-3990
CVE-2008-3985
CVE-2008-3989
CVE-2008-3992
CVE-2008-3994
CVE-2008-4003
CVE-2008-4004
CVE-2008-2624
CVE-2008-2588
CVE-2008-3993
CVE-2008-3991
CVE-2008-4001
CVE-2008-3975
CVE-2008-3987
CVE-2008-4005
CVE-2008-3995
CVE-2008-3977
CVE-2008-3982
CVE-2008-3986
CVE-2008-3983
CVE-2008-3976
CVE-2008-3998
CVE-2008-4000
CVE-2008-4002
CVE-2008-3996
CVE-2008-2625
CVE-2008-3984
CVE-2008-3988