Vulnerability Bulletins

int(3713)

Vulnerability Bulletins

Oracle publica parche acumulativo de Enero 2008
Vulnerability classification
Property	Value
Confidence level	Oficial
Impact	Obtener acceso
Dificulty	Experto
Required attacker level	Acceso remoto sin cuenta a un servicio estandar
System information
Property	Value
Affected manufacturer	Comercial Software
Affected software	Oracle Database 11g 11.1.0.6 Oracle Database 10g Release 2, 10.2.0.2, 10.2.0.3 Oracle Database 10g 10.1.0.5 Oracle Database 9i Release 2, 9.2.0.8, 9.2.0.8DV Oracle Application Server 10g Release 3 (10.1.3), 10.1.3.0.0, 10.1.3.1.0, 10.1.3.3.0 Oracle Application Server 10g Release 2 (10.1.2), 10.1.2.0.2, 10.1.2.1.0, 10.1.2.2.0 Oracle Collaboration Suite 10g, 10.1.2 Oracle E-Business Suite Release 12, 12.0.0 - 12.0.3 Oracle E-Business Suite Release 11i, 11.5.9 - 11.5.10 CU2 Oracle PeopleSoft Enterprise PeopleTools 8.22, 8.48, 8.49 Oracle Database 9i, 9.0.1.5 FIPS+ Oracle Application Server 9i Release 1, 1.0.2.2
Description
Se ha publicado el parche acumulativo de Enero de 2008 para los siguientes productos de Oracle: Oracle Database, Oracle Application Server, Oracle Collaboration Suite, Oracle E-Business Suite, Oracle PeopleSoft Enterprise PeopleTools. Este parche soluciona múltiples vulnerabilidades que pueden comprometer la integridad, confidencialidad y disponibilidad de dichos productos así como la información manejada por ellos.
Solution
Actualización de software Oracle Oracle Database http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=466757.1#DBAVAIL Oracle Application Server http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=466757.1#ASMIDTIER Oracle Collaboration Suite http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=466757.1#OCSAVAIL Oracle E-Business Suite and Applications http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=467742.1 Oracle PeopleSoft Enterprise y JD Edwards EnterpriseOne http://www.peoplesoft.com/corp/en/support/security_index.jsp
Standar resources
Property	Value
CVE
BID	27229
Other resources
Oracle Critical Patch Update - Enero 2008 http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2008.html Integrity - Security Analysis: Oracle Critical Patch Update – January 2008 http://www.integrigy.com/security-resources/analysis/Integrigy-Oracle-CPU-January-2008-Analysis.pdf

Version history
Version	Comments	Date
1.0	Aviso emitido	2008-01-17

Vulnerability Bulletins

Oracle publica parche acumulativo de Enero 2008

Vulnerability classification

System information

Description

Solution

Standar resources

Other resources

Version history