Oracle Database Management Plug-In Unix (October 2013 CPU) (credentialed check)

The Oracle Database Management Plug-In installed on the remote host is missing the October 2013 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities in the Enterprise Manager Base Platform component : - An unspecified flaw exists in the Schema Management subcomponent...

Oracle JavaServer Faces contains multiple vulnerabilities

Overview Oracle JavaServer Faces contains multiple vulnerabilities which could allow an attacker to obtain sensitive information. Description Oracle JavaServer Faces contains multiple vulnerabilities which could allow an attacker to obtain sensitive information.Alex Kouzemtchenko and Jon Passki o...

Critical: Red Hat Security Advisory: java-1.7.0-oracle security update

Updated java-1.7.0-oracle packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give...

October 2013 Oracle Java Critical Patch Update

On Tuesday, for the first time, Java security updates were included with the quarterly Oracle Critical Patch Update – and just as quickly, Java wasted no time elevating itself as the top concern for Oracle admins and security experts. Of the 51 Java patches released, 50 allow for remote code...

Oracle Database Multiple Vulnerabilities (October 2013 CPU) (BEAST)

The remote Oracle database server is missing the October 2013 Critical Patch Update CPU. It is, therefore, affected by multiple security vulnerabilities in the following components : - Core RDBMS - Oracle Security service - XML Parser %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Oracle Critical Patch Update - October 2013

A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update...

Oracle Releases October 2013 Security Advisory

Oracle has released its Critical Patch Update for October 2013 to address 127 vulnerabilities across multiple products. This update contains the following security fixes: 2 for Oracle Database Server 17 for Oracle Fusion Middleware 4 for Oracle Enterprise Manager Grid Control 1 for Oracle...

Oracle Critical Patch Update - October 2013

A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update...

Oracle E-Business (July 2013 CPU)

The version of Oracle E-Business installed on the remote host is missing the July 2013 Critical Patch Update CPU. It is, therefore, affected by security issues in the following components : - Oracle Landed Cost Management - Oracle Application Object Library - Oracle Applications Technology Stack ...

Amazon Linux AMI : mysql51 (ALAS-2012-141)

This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory pages, listed below. - http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.htmlAppendixMSQL April 2012 -...

Amazon Linux AMI : mysql (ALAS-2012-44)

This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update Advisory page, listed in the References section. CVE-2011-2262 , CVE-2012-0075 , CVE-2012-0087 , CVE-2012-0101 , CVE-2012-0102 , CVE-2012-0112 ,...

Oracle Java Runtime Environment AWT storeImageArray Vulnerability

Added: 08/30/2013 CVE: CVE-2013-2465 BID: 60657 OSVDB: 94339 Background Java Runtime Environment JRE allows end users to run Java applications. Problem A buffer overflow vulnerability in the storeImageArray function of the Abstract Window Toolkit AWT library awt.dll allows command execution when ...

Oracle Java Runtime Environment AWT storeImageArray Vulnerability

Added: 08/30/2013 CVE: CVE-2013-2465 BID: 60657 OSVDB: 94339 Background Java Runtime Environment JRE allows end users to run Java applications. Problem A buffer overflow vulnerability in the storeImageArray function of the Abstract Window Toolkit AWT library awt.dll allows command execution when ...

Oracle WebCenter Content (April 2013 CPU)

The version of Oracle WebCenter Content installed on the remote host is potentially affected by multiple vulnerabilities in the Content Server component. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid69478;...

Oracle WebCenter Content CheckOutAndOpen.dll ActiveX Control Vulnerability

Added: 08/19/2013 CVE: CVE-2013-1559 BID: 59122 OSVDB: 92386 Background Oracle WebCenter Content is an open platform that allows users to create a vast range of content management applications. It consolidates unstructured content from across diverse systems so it can be centrally managed and the...

qemu security update

CentOS Errata and Security Advisory CESA-2013:1100 Updated qemu-kvm packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base...

Oracle Releases July 2013 Security Advisory

Oracle has released its Critical Patch Update for July 2013 to address 89 vulnerabilities across multiple products. This update contains the following security fixes: 6 for Oracle Database Server 21 for Oracle Fusion Middleware 1 for Oracle Hyperion 2 for Oracle Enterprise Manager Grid Control 7...

Oracle MySQL Server远程安全漏洞(CVE-2013-3783)

BUGTRAQ ID: 61210 CVECAN ID: CVE-2013-3783 Oracle MySQL Server是一个轻量的关系型数据库系统。 Oracle MySQL Server 5.5.31之前版本存在远程安全漏洞，此漏洞可通过MySQL协议利用，Server Parser子组件受到影响。远程攻击者可利用此漏洞造成拒绝服务。 0 MySQL Server = 5.5.31 厂商补丁： Oracle ------ Oracle已经为此发布了一个安全公告（cpujuly2013-1899826）以及相应补丁: cpujuly2013-1899826：Oracle...

Oracle Critical Patch Update - July 2013

A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update...

Oracle Critical Patch Update - July 2013

A Critical Patch Update CPU is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update...