当前页面位置: » 丰搜网 » 文档中心 » 详细内容
[oracle]4月甲骨文修复多个安全漏洞 (1)
受影响系统:
oracle e-business suite 11i 11.5.1 - 11.5.10 cu2
oracle e-business suite 11.0
oracle enterprise manager grid control 10.2.0.1
oracle enterprise manager grid control 10.1.0.4
oracle enterprise manager grid control 10.1.0.3
oracle database 10g release 1 10.1.0.5
oracle database 10g release 1 10.1.0.4
oracle oracle9i database server release 2 9.2.0.7
oracle oracle9i database server release 2 9.2.0.6
oracle oracle8i database server release 3 8.1.7.4
oracle application server 10g release 2 10.1.3.0.0
oracle application server 10g release 2 10.1.2.1.0
oracle application server 10g release 2 10.1.2.0.0 - 10.1.2.0.2
oracle application server 10g release 1 (9.0.4) 9.0.4.2
oracle application server 10g release 1 (9.0.4) 9.0.4.1
oracle collaboration suite 10g release 1 10.1.2.1
oracle collaboration suite 10g release 1 10.1.2.0
oracle collaboration suite 10g release 1 10.1.1
oracle oracle9i collaboration suite release 2 9.0.4.2
oracle peoplesoft enterprise tools 8.47ga - 8.47.04
oracle peoplesoft enterprise tools 8.46ga - 8.46.12
oracle database 10g release 2 10.2.0.2
oracle database 10g release 2 10.2.0.1
oracle pharmaceutical applications 4.5.0 - 4.5.2
oracle jd edwards enterpriseone tools/oneworld tools 8.95 - 8.95.j1
描述:
bugtraq id: 17590
oracle database是一款商业性质大型数据库系统。
oracle发布了2006年4月的紧急补丁更新公告,修复了多个oracle产品中的多个漏洞。这些漏洞影响oracle产品的所有安全属性,可导致本地和远程的威胁。其中一些漏洞可能需要各种级别的授权,但也有些不需要任何授权。最严重的漏洞可能导致完全入侵数据库系统。
<*来源:esteban martinez fayo
alexander kornbrust (ak@red-database-security.com)
david litchfield (david@nextgenss.com)
noderat ratty
链接:http://www.oracle.com/technology/deploy/security/pdf/cpuapr2006.html?_template=/ocom/technology/cont
*>
建议:
厂商补丁:
oracle已经为此发布了一个安全公告(cpuapr2006)以及相应补丁:
