Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum Control and Tivoli Storage Productivity Center October 2015 CPU and January 2016 CPU

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ Technology Edition that is shipped and used by IBM Spectrum Control and Tivoli Storage Productivity Center. These issues were disclosed as part of the IBM Java SDK updates in October...

Oracle Java SE 6 < Update 105 / 7 < Update 91 / 8 < Update 65 Multiple Vulnerabilities (October 2015 CPU)

Binary data 700652.prm...

Security Bulletin: Multiple vulnerabilities have been identified in WebSphere Application Server shipped with IBM Service Delivery Manager (CVE-2015-4872, CVE-2015-4734 and CVE-2015-5006)

Summary IBM WebSphere Application Server is shipped as components of IBM Service Delivery Manager. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Review security bulletin Multiple vulnerabilities i...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect WebSphere Application Server and Tivoli Netcool Performance Manager October 2015 CPU (CVE-2015-4872, CVE-2015-4734, CVE-2015-5006)

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version that is used by Tivoli Netcool Performance Manager . These issues were disclosed as part of the IBM Java SDK updates for October 2015. Vulnerability Details CVEID: CVE-2015-4872 DESCRIPTION: An unspecified...

mysql: unspecified vulnerability related to Server:DML (CPU October 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, and 5.6.25 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to DML...

mysql: unspecified vulnerability related to Server:DML (CPU October 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858...

mysql: unspecified vulnerability related to Server:DML (CPU October 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2015-4913...

[ERPSCAN-15-030] Oracle E-Business Suite - XXE injection Vulnerability

ADVISORY INFORMATION Title: Oracle E-Business Suite XXE injection Advisory ID: ERPSCAN-15-030 Advisory URL: http://erpscan.com/advisories/erpscan-15-030-oracle-e-business-suite-xxe-injection-vulnerability/ Date published: 20.10.2015 Vendors contacted: Oracle 2. VULNERABILITY INFORMATION Class:...

Oracle VM VirtualBox < 4.0.30 / 4.1.38 / 4.2.30 / 4.3.26 / 5.0.0 Core DoS (October 2015 CPU)

The Oracle VM VirtualBox application installed on the remote host is a version prior to 4.0.30, 4.1.38, 4.2.30, 4.3.26, or 5.0.0. It is, therefore, affected by an unspecified flaw in the Core subcomponent. A local attacker can exploit this to cause a denial of service. C Tenable Network Security,...

Oracle JDeveloper Multiple Vulnerabilities (October 2015 CPU)

The version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the ADF Faces subcomponent that allows an authenticated, remote attacker to disclose sensitive information...

Oracle Identity Manager OIM Legacy UI Unspecified Vulnerability (October 2015 CPU)

The remote host is missing the October 2015 Critical Patch Update for Oracle Identity Manager. It is, therefore, affected by an unspecified vulnerability due to an unspecified flaw in the OIM Legacy UI subcomponent. A remote attacker can exploit this flaw to impact integrity. %NASLMINLEVEL 70300 ...

Oracle JRockit R28 < R28.3.8 Multiple Vulnerabilities (October 2015 CPU)

The version of Oracle JRockit installed on the remote Windows host is R28 prior to R28.3.8. It is, therefore, affected by multiple vulnerabilities : - Multiple denial of service vulnerabilities exist due to multiple unspecified flaws in the JAXP subcomponent. A remote attacker can exploit these...

Oracle MySQL 5.6.x < 5.6.25 Multiple Vulnerabilities (July 2015 CPU) (October 2015 CPU)

The version of Oracle MySQL installed on the remote host is 5.6.x prior to 5.6.25. It is, therefore, affected by the following vulnerabilities : - Multiple denial of service vulnerabilities exist in the following subcomponents which can be exploited by a remote, authenticated attacker : - Partiti...