Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
info
discussion
exploit
solution
references
Oracle January 2009 Critical Patch Update Multiple Vulnerabilities
References:
ACROS Security Problem Report #2009-01-27-1
(ACROS)
Assurent VR - Oracle BEA WebLogic Server Apache Connector Buffer Overflow
(Assurent)
CVE -2008- 5446 Sensitive Information Disclosure
(SecNiche)
Oracle Critical Patch Update - January 2009 - E-Business Suite Impact
(Integrigy)
Oracle Database 10g R2 Summary Advisor Arbitrary File Rewrite Vulnerability
(iDefense Labs )
Oracle Homepage
(Oracle)
Oracle Secure Backup 10g Remote Code Execution
(Joxean Koret)
Oracle Secure Backup Administration Server login.php Command Injection Vulnerabi
(iDefense)
Oracle Secure Backup Administration Server login.php Command Injection Vulnerabi
(iDefense)
Oracle Secure Backup Administration Server login.php Command Injection Vulnerabi
(iDefense Labs )
ACROS Security: HTML Injection in BEA (Oracle) WebLogic Server Console (ASPR #20
("ACROS Security"
)
Advisory: Oracle EBusiness Suite Sensitive Information Disclosure
(SecNiche)
Advisory: Oracle EBusiness Suite Sensitive Information Disclosure Vulnerability
(Aditya K Sood <0kn0ck@secniche.org>)
iDefense Security Advisory 01.13.09: Oracle Database 10g R2 Summary Advisor Arbi
(iDefense Labs
)
iDefense Security Advisory 01.13.09: Oracle Secure Backup Administration Server
(iDefense Labs
)
iDefense Security Advisory 01.13.09: Oracle Secure Backup Administration Server
(iDefense Labs
)
Oracle Application Server 10g Cross Site Scripting Vulnerability
(DoZ@HackersCenter.com)
Oracle CPU Jan 2009 Advisories
(Alexandr Polyakov
)
Oracle Forms Cross site Scripting in (iFcgi60.exe / f60servlet)
(DoZ@HackersCenter.com)
Oracle Secure Backup 10g Remote Code Execution
(Joxean Koret
)
Oracle Secure Backup Multiple Denial Of Service vulnerabilities
("noreply-secresearch@fortinet.com"
)
Oracle Secure Backup NDMP_CONECT_CLIENT_AUTH Command Buffer Overflow Vulnerabili
("noreply-secresearch@fortinet.com"
)
Oracle Secure Backup's observiced.exe Denial Of Service vulnerability
("noreply-secresearch@fortinet.com"
)
Oracle TimesTen Remote Format String
(Joxean Koret
)
Re: iDefense Security Advisory 01.13.09: Oracle Secure Backup Administration Ser
(security curmudgeon
)
Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.OLAPIMPL_
(Shatter
)
Team SHATTER Security Advisory: SQL Injection in Oracle Enterprise Manager
(Shatter
)
Trigger Abuse of MDSYS.SDO_TOPO_DROP_FTBL in Oracle 10g R1 and R2
("David Litchfield"
)
Trigger Abuse of MDSYS.SDO_TOPO_DROP_FTBL in Oracle 10g R1 and R2
(David Litchfield)
ZDI-09-003: Oracle Secure Backup exec_qr() Command Injection Vulnerability
(zdi-disclosures@3com.com)
ZDI-09-004: Oracle TimesTen evtdump Remote Format String Vulnerability
(zdi-disclosures@3com.com)
Oracle Critical Patch Update Advisory - January 2009
(Oracle)
Oracle Critical Patch Update Pre-Release Announcement - January 2009
(Oracle)
Oracle TimesTen Remote Format String
(Joxean Koret)
SECURITY ADVISORY (CVE-2008-5457)
(BEA)
SECURITY ADVISORY (CVE-2008-5459)
(BEA)
SECURITY ADVISORY (CVE-2008-5460)
(BEA)
SECURITY ADVISORY (CVE-2008-5461)
(BEA)
SECURITY ADVISORY (CVE-2008-5462)
(BEA)
ZDI-09-003 Oracle Secure Backup exec_qr() Command Injection Vulnerability
(ZDI)
ZDI-09-004 Oracle TimesTen evtdump Remote Format String Vulnerability
(ZDI)
Privacy Statement
Copyright 2009, SecurityFocus
