Status Tracking Note TRTA06-200A

Oracle Products Contain Multiple Vulnerabilities

Oracle products and components are affected by multiple vulnerabilities. The impacts of these vulnerabilities include remote execution of arbitrary code, information disclosure, and denial of service.

Event Information

Date (UTC)	Description
2006-07-19 20:17	US-CERT TA06-200A: Oracle Products Contain Multiple Vulnerabilities Via US-CERT Mailing List Oracle products and components are affected by multiple vulnerabilities. The impacts of these vulnerabilities include remote execution of arbitrary code, information disclosure, and denial of service.
2006-07-18 19:01	Oracle Critical Patch Update - July 2006
2005-11-01	Red-Database-Security SQL Injection in package SYS.DBMS_UPGRADE [DB22] Vulnerability Reported
2005-11-01	Red-Database-Security SQL Injection in package SYS.DBMS_STATS [DB21] Vulnerability Reported
2005-11-01	Red-Database-Security SQL Injection in package SYS.KUPW$WORKER [DB03] Vulnerability Reported
2005-11-01	Red-Database-Security SQL Injection in package SYS.DBMS_CDC_IMPDP [DB01] Vulnerability Reported


Date first published (UTC):	2006-07-20T23:50+00:00
Date last updated (UTC):	2006-07-20T23:50+00:00