234 matches found
Oracle E-Business套件SQL注入漏洞
Oracle E-Business Suite是一款Oracle公司推出的电子商务套件。 Oracle E-Business Suite存在SQL注入问题,远程攻击者可以利用漏洞获得敏感信息或操作数据库。 问题存在于管理控制台中的okxLOV.jsp脚本,此页面允许攻击者指定参数给WHERE SQL命令而没有做任何过滤,导致以APPS用户权限执行任意SQL注入。 E-Business Suite 11 E-Business Suite 12 可参考如下安全公告获得补丁信息:...
Oracle Database Server MDSYS.SDO_CS缓冲区溢出漏洞
Oracle Database Server是一款商业性质的功能强大的数据库服务程序。 Oracle Database Server处理MDSYS.SDOCS.TRANSFORM函数存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 Oracle Database Server提供的MDSYS.SDOCS包包含子程序用于与协作系统工作。此包TRANSFORM过程处理存在缓冲区溢出,任何对MDSYS.SDOCS有执行权限的Oracle数据库用户可利用此漏洞。 Oracle Oracle9i Standard Edition 9.2 .6 Oracle Oracle9i...
Oracle interMedia多个SQL注入漏洞
InterMedia是Oracle推出的对Oracle8i多媒体功能的扩充。 InterMedia不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 InterMedia包含的CTXDOC包存在多个SQL注入缺陷。如下的过程存在此漏洞: THEMES GIST TOKENS FILTER HIGHLIGHT MARKUP 数据库用户可通过这些漏洞不需要用户ID和密码访问Oracle应用程序服务器。 Oracle Oracle9i Application Server 9.2 .8 Oracle Oracle10g Standard...
Solaris 9 (sparc) : 126105-42
Sun Cluster 3.2: CORE patch for Solaris 9. Date this patch was last updated by Sun : Apr/27/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 9 (sparc) : 125437-22
Oracle iPlanet Web Server 7.0.12 Solaris: Update Release patch. Date this patch was last updated by Sun : Aug/19/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Security fix for the ALT Linux 10 package apache2 version 2.2.5-alt1
Aug. 18, 2007 Aleksey Avdeev 2.2.5-alt1 - 2.2.5 - Adding SECURITY to upstream old patchs removing: + CVE-2007-3847 + CVE-2007-1863 remove apache2-2.2.3-fedora-fix-CVE-2007-1863.patch + CVE-2007-3304 remove apache2-2.2.4-alt-fix-CVE-2007-3304.0.1.patch + CVE-2006-5752 remove...
Solaris 8 (x86) : 115299-01
X11 6.4.1x86: xscreensaver patch. Date this patch was last updated by Sun : Apr/16/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 8 (sparc) : 124520-05
N1 Grid Engine 6.0: maintenance patch. Date this patch was last updated by Sun : Sep/18/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
SAP IGS未明漏洞
Internet Graphics ServerIGS是SAP R/3企业环境的一个组件,可提供图形服务。 SAP IGS存在多个安全问题,远程攻击者可以利用漏洞关闭SAP IGS服务,访问配置文件,执行未授权服务配置等攻击。 目前没有详细漏洞细节提供。 SAP Internet Graphics Server 6.40 Patch 11 SAP Internet Graphics Server 7.00 Patch 3 SAP Internet Graphics Server 7.00 Patch 2 SAP Internet Graphics Server 7.00 Patch 1...
Solaris 8 (x86) : 120672-08
Mozilla 1.7x86 for Solaris 8 and 9. Date this patch was last updated by Sun : Sep/02/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
[security bulletin] HPSBMA02088 SSRT051026 rev. 2 - HP-UX running WBEM Services Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00582373 Version: 2 HPSBMA02088 SSRT051026 rev. 2 - HP-UX running WBEM Services Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted upon as soon as possible...
Solaris 7 (sparc) : 110972-22
Sun Management Center 3.0: RR Patch for Solaris 7. Date this patch was last updated by Sun : Apr/08/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc';...
Solaris 6 (sparc) : 118386-09
Sun Management Center 3.5.1: Patch for Solaris 2.6. Date this patch was last updated by Sun : Nov/20/06 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'...
Solaris 6 (sparc) : 110971-22
Sun Management Center 3.0: RR Patch for Solaris 2.6. Date this patch was last updated by Sun : Apr/08/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc...
Solaris 8 (sparc) : 119777-19
commcli 6.3-2.09: core patch. Date this patch was last updated by Sun : Mar/19/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 9 (x86) : 118264-25
Portal Server 6.3x86: Miscellaneous Fixes. Date this patch was last updated by Sun : Sep/14/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
Solaris 8 (x86) : 114645-04
GNOME 2.0.0x86: Base GUI Libraries. Date this patch was last updated by Sun : Sep/08/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 6 (sparc) : 110936-22
Sun Management Center 3.0: GA Patch for Solaris 2.6. Date this patch was last updated by Sun : Apr/07/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc...
Solaris 9 (sparc) : 119166-43
Sun Java System App Server Enterprise Ed 8.1 2005Q1, Solaris Patch. Date this patch was last updated by Sun : Oct/18/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 9 (sparc) : 113801-12
Sun Cluster 3.1: Core/Sys Admin Patch. Date this patch was last updated by Sun : May/20/04 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...