| VID |
25114 |
| Severity |
40 |
| Port |
1521, ... |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The remote Oracle database server is missing the April 2012 Critical Patch Update (CPU) and, is therefore, potentially affected by security issues in the following components :
- Core RDBMS
- Oracle Spatial
- OCI
- Enterprise Manager Base Platform
- Application Express
* Note: This check solely relied on the version number of the remote Oracle Database server to assess this vulnerability, so this might be a false positive.
* References:
http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html
* Platforms Affected:
Oracle Database 11g Release 2, versions 11.2.0.2, 11.2.0.3
Oracle Database 11g Release 1, version 11.1.0.7
Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5
Microsoft Windows Any version
Linux Any version
Unix Any version |
| Recommendation |
Oracle has released a Critical Patch Update to address these issues. Information regarding obtaining and applying an appropriate patch can be found in the Oracle Critical Patch Update Advisory dated April 2012 at http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html |
| Related URL |
CVE-2012-0510,CVE-2012-0511,CVE-2012-0512,CVE-2012-0519,CVE-2012-0520,CVE-2012-0525,CVE-2012-0526,CVE-2012-0527,CVE-2012-0528,CVE-2012-0534 (CVE) |
| Related URL |
53063,53072,53076,53081,53084,53089,53090,53092,53093,53097,53101,53104 (SecurityFocus) |
| Related URL |
(ISS) |
|
