eygle.com   eygle.com
eygle.com eygle

« 数据恢复:ORA-600 kccpb_sanity_check_2解决 | Blog首页 | 花开时节 北京10年 »

Oracle Security Alert for CVE-2011-5035 OC4J


Dear Oracle Customer,

Oracle Security Alert for CVE-2011-5035 that was originally released on Tuesday, January 31, 2012 has been updated to announce additional products that are impacted by this vulnerability through their use of affected components.

Oracle strongly recommends applying Security Alert fixes as soon as possible.

The Security Alert Advisory is the starting point for relevant information. It includes the list of affected products, a summary of the security vulnerability, and a pointer to obtain the latest patches.

Also, it is essential to review the Security Alert supporting documentation referenced in the Advisory before applying patches, as this is where you can find important pertinent information.

The Advisory is available at the following location:

Oracle Critical Patch Updates and Security Alerts:

Updated Oracle Security Alert CVE-2011-5035:

Thank you,
Customer Support of Oracle Corporation
该安全漏洞影响包含了OC4J的产品,包括Oracle Audit Vault,Database,OEM,OIM等产品:
Products such as Oracle Audit Vault, Oracle Database, Oracle Enterprise Manager Grid Control and Oracle Identity Management include Oracle Containers for J2EE (OC4J). OC4J is affected by CVE-2011-5035, so security patches need to be applied to OC4J instances in these products


This security alert addresses the security issue CVE-2011-5035, a denial of service vulnerability in Oracle WebLogic Server, Oracle Application Server (component: Oracle Container for J2EE/OC4J) and Oracle iPlanet Web Server due to hashing collisions. This vulnerability may be remotely exploitable without authentication, i.e., it may be exploited over a network without the need for a username and password. A remote user can exploit this vulnerability to affect the system availability.



    >> 2019-03-30文章:
    >> 2017-03-30文章:
    >> 2011-03-30文章:
    >> 2009-03-30文章:
    >> 2008-03-30文章:
           resize datafile 与 checkpoint
    >> 2006-03-30文章:
           广告: 招聘SQL SERVER DBA
    >> 2005-03-30文章:

By eygle on 2012-03-30 12:05 | Comments (0) | Advanced | 2987 |

CopyRight © 2004~2020 云和恩墨,成就未来!, All rights reserved.
数据恢复·紧急救援·性能优化 云和恩墨 24x7 热线电话:400-600-8755 业务咨询:010-59007017-7040 or 7037 业务合作: marketing@enmotech.com