Oracle October 2008 Oracle Critical Patch Update Multiple Vulnerabilities

Oracle October 2008 Oracle Critical Patch Update Multiple Vulnerabilities

References:

Elevation of privilege vulnerability in some NetUI tags (Oracle)
Oracle Homepage (Oracle)
Advisory for Oracle CPU October 2008 - APEX Flows excessive privileges (Pete Finnigan )
CVE-2008-2625: Oracle DBMS ? Proxy Authentication Vulnerability (shulman@imperva.com)
CVE-2008-4000: Oracle PeopleTools ? Authentication Weakness (shulman@imperva.com)
iDefense Security Advisory 10.31.08: Oracle WebLogic Apache Connector (iDefense Labs )
Team SHATTER Security Advisory: Oracle Database multiple SQL Injection vulnerab (Shatter)
Team SHATTER Security Advisory: Oracle Database Multiple SQL Injection vulnerab (Shatter)
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_I (Shatter)
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_P (Shatter)
Team SHATTER Security Advisory: Oracle Database multiple SQL Injection vulnerabi (Shatter )
Team SHATTER Security Advisory: Oracle Database Multiple SQL Injection vulnerabi (Shatter )
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_IP (Shatter )
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_PU (Shatter )
Elevation of Privilege vulnerability if more than one authorizer is used (Oracle)
Elevation of privilege vulnerability in some NetUI pageflows (Oracle)
Elevation of privileges for some applications (Oracle)
Oracle Critical Patch Update Advisory - October 2008 (Oracle)
Oracle Critical Patch Update Pre-Release Announcement - October 2008 (Oracle)
Oracle DBMS â?? Proxy Authentication Vulnerability (Imperva)
Oracle PeopleTools â?? Authentication Weakness (Imperva)
Oracle WebLogic Apache Connector (iDefense Labs)
Protected webapps may be displayed under certain conditions (Oracle)
Security vulnerability in WebLogic plug-in for Apache (Oracle)