Vulnerabilities in Oracle mod_plsql and JSP in Oracle9i Application Server, v1.0.2.x
Alert #28, 06 February 2002, UPDATED 05 JULY 2002. Download the patch from MetaLink and follow the workarounds as described in the Alert.
Oracle Security Alerts
13 juin 2011 : Oracle RSS Feed Notification
The RSS feed you are currently subscribed to has moved. Please subscribe to the new feed at http://www.oracle.com/us/syndication/feeds/index.html
30 juillet 2010 : This feed has moved!
Please update your bookmarks and RSS readers.
14 juillet 2010 : Oracle Critical Patch Update (CPU) - July 2010
13 avril 2010 : Oracle Critical Patch Update (CPU) - April 2010
10 février 2010 : Oracle Security Alert for CVE-2010-0073 - February 2010
Oracle Security Alert for CVE-2010-0073
13 janvier 2010 : Critical Patch Update - January 2010
20 octobre 2009 : Critical Patch Update - October 2009
16 juillet 2009 : Critical Patch Update - July 2009
15 avril 2009 : Critical Patch Update - April 2009
13 janvier 2009 : Critical Patch Update - January 2009
15 octobre 2008 : Critical Patch Update - October 2008
15 juillet 2008 : Critical Patch Update - July 2008
16 avril 2008 : Critical Patch Update - April 2008
15 janvier 2008 : Critical Patch Update - January 2008
16 octobre 2007 : Critical Patch Update - October 2007
17 juillet 2007 : Critical Patch Update - July 2007
18 avril 2007 : Critical Patch Update - April 2007
17 janvier 2007 : Critical Patch Update - January 2007
17 octobre 2006 : Critical Patch Update - October 2006
18 juillet 2006 : Critical Patch Update - July 2006
18 avril 2006 : Critical Patch Update - April 2006
19 octobre 2005 : Critical Patch Update - April 2005
19 octobre 2005 : Critical Patch Update - October 2005
13 juillet 2005 : Unintended Execution of Oracle JSP
12 juillet 2005 : Critical Patch Update - July 2005
12 avril 2005 : Critical Patch Update - January 2006
12 avril 2005 : Oracle Security Update
Alert #68, Rev 3, 27 December 2004. Patches are available on MetaLink.
18 janvier 2005 : Critical Patch Update - January 2005
2 août 2004 : Buffer Overflow in iSQL*Plus (Oracle9i Database Server)
Alert #46, Rev 3, 11 November 2002. Patches are available on MetaLink.
2 août 2004 : Unauthorized Access Vulnerabilities in Oracle E-Business Suite
Alert #67, Rev 1, 3 June 2004. Patches are available on MetaLink.
2 août 2004 : Security Vulnerabilities in Oracle Application Server Web Cache
Alert #66, Rev 2, 2 April 2004. Patches are available on MetaLink.
2 août 2004 : Security Vulnerability in Oracle9i Application and Database Servers
Alert #65, Rev 4, 2 June 2004. Patches are available on MetaLink.
2 août 2004 : Security Vulnerabilities in Oracle9i Database Server
Alert #64, Rev 2, 20 May 2004. Patches are available on MetaLink.
2 août 2004 : Security Vulnerabilities in Oracle9i Lite
Alert #63, Rev 1, 18 February 2004. Patches are available on MetaLink.
2 août 2004 : SSL Update for CERT CA-2003-26 and Older SSL Issues
Alert #62, Rev 1, 04 December 2003. Patches are available on MetaLink.
2 août 2004 : SQL Injection Vulnerability in Oracle9i Application Server
Alert #61, Rev 3, 13 November 2003. Patches are available on MetaLink.
2 août 2004 : Unauthorized Access to Restricted Content in Oracle Files
Alert #60, Rev 1, 28 October 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow in Oracle Database Server Binaries
Alert #59, Rev 3, 13 November 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow in the XML Database of Oracle9i Database Server
Alert #58, Rev 1, 18 August 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflows in EXTPROC of Oracle Database Server
Alert #57, Rev 2, 07August 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow Vulnerability in Oracle E-Business Suite
Alert #56, Rev 1, 23 July 2003. Patches are available on MetaLink.
2 août 2004 : Unauthorized Disclosure of Information in Oracle E-Business Suite
Alert #55, Rev 1, 23 July 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow in Net Services for Oracle Database Server
Alert #54, Rev 2, 30 April 2003. Patches are available on MetaLink.
2 août 2004 : Report Review Agent Vulnerability in Oracle E-Business Suite
Alert #53, Rev 1, 10 April 2003. Patches are available on MetaLink.
2 août 2004 : Two Security Vulnerabilities in Oracle9i Application Server
Alert #52, Rev 3, Updated 03 March 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow in ORACLE Executable of Oracle9i Database Server
Alert #51, Rev 6, Updated 18 April 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow in Oracle9i Database Server
Alert #50, Rev 6, Updated 18 April 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow in Oracle9i Database Server
Alert #49, Rev 6, Updated 18 April 2003. Patches are available on MetaLink.
2 août 2004 : Buffer Overflow in Oracle9i Database Server
Alert #48, Rev 6, Updated 18 April 2003. Patches are available on MetaLink.
2 août 2004 : Security Vulnerabilities in Oracle9i Application Server
Alert #47, Rev 3, 23 July 2003. Follow the workarounds as specified in the Alert.
2 août 2004 : Security Release of Apache 1.3.27
Alert #45, Rev 6, 20 May 2004. Patches are available on MetaLink.
2 août 2004 : Unauthorized Access Vulnerability in Oracle E-Business Suite, Release 11i
Alert #44, Rev 1, 04 October 2002. Download the mandatory patch from MetaLink.
2 août 2004 : Oracle9iAS Web Cache Administration Tool Vulnerability
Alert #43, Rev 1, 04 October 2002. Follow the workarounds as specified in the Alert.
2 août 2004 : Denial of Services Against Oracle Net Services
Alert #42, Rev 3, 16 December 2002. Download the patches from MetaLink.
2 août 2004 : Oracle9iAS OJSP Demo Vulnerability
Alert #41, Rev 1, 14 August 2002. Follow the workarounds as specified in the Alert.
2 août 2004 : Oracle Net Listener Vulnerabilities
Alert #40, Rev 3, 08 August 2002. Download the patches from MetaLink.
2 août 2004 : Web Cache (Oracle9iAS) Password Vulnerability
Alert #39, Rev 1, 08 August 2002. Follow the workaround as specified in the Alert.
2 août 2004 : Oracle Net Denial of Service Security Vulnerability
Alert #38, Rev 3, 08 August 2002. Download the patches from MetaLink.
2 août 2004 : OpenSSL Buffer Overflow
Alert #37, Updated 09 Aug 2002. Download the patches from MetaLink.
2 août 2004 : Security Vulnerability in Apache HTTP Server of Oracle9iAS
Alert #36, Updated 12 July 2002. Download the patches from MetaLink.
2 août 2004 : Buffer Overflow Vulnerability in Oracle9iAS Reports Server
Alert #35, 05 June 2002. Download the patches from MetaLink.
2 août 2004 : Buffer Overflow Vulnerability in Oracle Net (Oracle9i Database Server)
Alert #34, 05 June 2002. Download the patches from MetaLink.
2 août 2004 : User Privileges Vulnerability in Oracle9i Database Server
Alert #33, 17 April 2002. Download the patches from MetaLink.
2 août 2004 : Unauthorized Access Vulnerability in the Oracle E-business Suite
Alert #32, 17 April 2002. Download the patches from MetaLink.
2 août 2004 : Oracle Configurator Vulnerability
Alert #31, 01 April 2002. Download the patch from MetaLink and/or follow workarounds as specified in the Alert.
2 août 2004 : SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent, for Oracle9i Database
Alert #30, 05 March 2002. Download the patch from MetaLink.
2 août 2004 : Vulnerability in PL/SQL EXTPROC in Oracle9i Database
Alert #29, 07 August 2003. Download the patch from MetaLink or follow the workaround as described in the Alert.
2 août 2004 : Vulnerabilities in Oracle mod_plsql and JSP in Oracle9i Application Server, v1.0.2.x
Alert #28, 06 February 2002, UPDATED 05 JULY 2002. Download the patch from MetaLink and follow the workarounds as described in the Alert.
2 août 2004 : Vulnerabilities in Oracle9iAS Webcache
Alert #27, 28 December 2001
2 août 2004 : DoS Against Oracle9iAS
Alert #26
2 août 2004 : Vulnerabilities in mod_plsql
Alert #25
2 août 2004 : Oracle Database Server DBSNMP Vulnerabilities
Alert #23, 29 November 2001
2 août 2004 : Security Implications of the Oracle9iAS Default SOAP Configuration
Alert #22, Updated 23 September 2002
2 août 2004 : Oracle Label Security Mandatory Security Patch
Alert #21, 18 October 2001
2 août 2004 : Oracle File Overwrite Security Vulnerability
Alert #20, 18 October 2001
2 août 2004 : Oracle Trace Collection Security Vulnerability
Alert #19, Updated 29 November 2001
2 août 2004 : Oracle9iAS Web Cache Overflow Vulnerability
Alert #18, 18 October 2001
2 août 2004 : Oracle Internet Directory Buffer Overflow
2 août 2004 : Oracle SQL*Net/Net8 Malformed Packet Denial of Service
2 août 2004 : Oracle SQL*Net/Net8 Denial of Service
2 août 2004 : Oracle SQL*Net/Net8 Redirect Denial of Service
2 août 2004 : Launch of Forms from Oracle e-business Suite
2 août 2004 : Execution of Oracle JSP Outside doc_root
2 août 2004 : Oracle JVM FilePermission Vulnerability
2 août 2004 : Oracle Internet Directory Buffer Overflows
2 août 2004 : Oracle Connection Manager Control SUID
2 août 2004 : Oracle XSQL Servlet Vulnerability
2 août 2004 : Oracle Internet Application Server
2 août 2004 : Oracle Enterprise Manager Backup and Recovery
2 août 2004 : Net8 Listener Vulnerability
2 août 2004 : Oracle Application Server: Remote Command Execution
