|
Oracle Reports Server 10g Multiple Remote Cross-Site Scripting Vulnerabilities
Solution: Oracle has released a Critical Patch Update (Critical Patch Update - October 2005) to address these issues. Information regarding obtaining and applying appropriate patches can be found in the referenced Oracle Critical Patch Update. Pre-installation notes for Oracle Database Server can be found at the following location: http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=333956.1 Pre-installation notes for Oracle Application Server can be found at the following location: http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=333959.1 Pre-installation notes for Oracle Collaboration Suite can be found at the following location: http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=333961.1 Pre-installation notes for Oracle E-Business Suite and Applications can be found at the following location: http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=333963.1 Pre-installation notes for Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne can be found at the following location: http://www.peoplesoft.com/corp/en/support/security_index.jsp A message from "David Litchfield" <davidl@ngssoftware.com> is available that states that some of the vulnerabilities in Oracle Critical Patch Update - October 2005 may not have been successfully fixed by Oracle. Users of affected packages should refer to the referenced message, and contact their vendor for further information on the status of fixes. |
|
 Privacy Statement |
