| VID |
25099 |
| Severity |
40 |
| Port |
1521, ... |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The remote Oracle database server is missing the October 2010 Critical Patch Update (CPU) and therefore is potentially affected by security issues in the following components
- Enterprise Manager Console
- Java Virtual Machine
- Change Data Capture
- OLAP
- Job Queue
- XDK
- Core RDBMS
- Perl
* Note: This check solely relied on the version number of the remote Oracle Database server to assess this vulnerability, so this might be a false positive.
* References:
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
* Platforms Affected:
Oracle Database 11g Release 2, version 11.2.0.1
Oracle Database 11g Release 1, version 11.1.0.7
Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4
Oracle Database 10g, version 10.1.0.5
Oracle Database 9i Release 2, versions 9.2.0.8, 9.2.0.8DV
Microsoft Windows Any version
Linux Any version
Unix Any version |
| Recommendation |
Oracle has released a Critical Patch Update to address these issues. Information regarding obtaining and applying an appropriate patch can be found in the Oracle Critical Patch Update Advisory dated October 2010 at http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html |
| Related URL |
CVE-2010-1321,CVE-2010-2389,CVE-2010-2390,CVE-2010-2391,CVE-2010-2407,CVE-2010-2411,CVE-2010-2412,CVE-2010-2415,CVE-2010-2419 (CVE) |
| Related URL |
40235,43935,43940,43945,43956,43958,43961,43964,43970 (SecurityFocus) |
| Related URL |
(ISS) |
|
