‫ Oracle Database Mobile Server / Database Lite Multiple Vulnerabilities

IRCAD2013012429
ID: IRCAD2013012429
Release Date: 2013-01-16
Criticality level: Highly critical
Software:
Oracle Database Lite 10.x
Oracle Database Mobile Server 11.x
Description:
Multiple vulnerabilities have been reported in Oracle Database Mobile Server and Database Lite, which can be exploited by malicious people to disclose certain sensitive information and compromise a vulnerable system.
1) An unspecified error in the Mobile Server component can be exploited to execute arbitrary code.
2) Another unspecified error in the Mobile Server component can be exploited to execute arbitrary code.
3) An unspecified error in the Mobile Server component can be exploited to gain read access to arbitrary files.
4) Another unspecified error in the Mobile Server component can be exploited to gain read access to arbitrary files.
5) Another unspecified error in the Mobile Server component can be exploited to gain read access to arbitrary files.
The vulnerabilities are reported in the following products:
* Oracle Database Mobile Server version 11.1.0.0
* Oracle Database Lite Server version 10.3.0.3
Solution
Apply updates (please see the vendor's advisory for details).
References:
Oracle:
Secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 28 دی 1391

امتیاز

امتیاز شما
تعداد امتیازها:0