Oracle October 2006 Security Update Multiple Vulnerabilities

Oracle October 2006 Security Update Multiple Vulnerabilities

References:

Analysis of the Oracle October 2006 Critical Patch Update (David Litchfield)
Oracle Critical Patch Update - October 2006 (Oracle)
Oracle Homepage (Oracle)
Cross-Site-Scripting Vulnerabilitiy in Oracle APEX NOTIFICATION_MSG (Alexander Kornbrust)
Cross-Site-Scripting Vulnerability in Oracle APEX WWV_FLOW_ITEM_HELP (Alexander Kornbrust)
HPSBMA02133 SSRT061201 rev.2 - HP Oracle for OpenView (OfO) Critical Patch Updat (security-alert@hp.com)
Modify Data via Inline Views (Alexander Kornbrust)
SQL Injection in Oracle package MDSYS.SDO_LRS (Alexander Kornbrust)
SQL Injection in package SYS.DBMS_CDC_IMPDP (Alexander Kornbrust)
SQL Injection in package SYS.DBMS_SQLTUNE_INTERNAL (Alexander Kornbrust)
SQL Injection in package XDB.DBMS_XDBZ0 (Alexander Kornbrust)
SQL Injection Vulnerability in Oracle WWV_FLOW_UTILITIES (Alexander Kornbrust)
Various Cross-Site-Scripting Vulnerabilities in Oracle Reports (Alexander Kornbrust)

Privacy Statement
Copyright 2010, SecurityFocus