Oracle Fusion Middleware Multiple Code Execution and Security Bypass
Description
Multiple vulnerabilities have been identified in Oracle Fusion Middleware products, which could be exploited by attackers or malicious users to cause a denial of service, gain knowledge of sensitive information or execute arbitrary code. These issues are caused by errors in the JRockit, WebLogic Server, Document Capture, Services for Beehive, HTTP Server, Discoverer, GoldenGate Veridata, BI Publisher and Outside In Technology components.
Vulnerable Products
Vulnerable Software: Oracle Fusion Middleware 11g Release 1 version 11.1.1.2.0Oracle Fusion Middleware 11g Release 1 version 11.1.1.3.0Oracle Application Server 10g Release 2 version 10.1.2.3.0Oracle Beehive version 2.0.1.0Oracle Beehive version 2.0.1.1Oracle Beehive version 2.0.1.2Oracle Beehive version 2.0.1.2.1Oracle Beehive version 2.0.1.3Oracle BI Publisher version 10.1.3.3.2Oracle BI Publisher version 10.1.3.4.0Oracle BI Publisher version 10.1.3.4.1Oracle BI Publisher version 11.1.1.3Oracle Document Capture version 10.1.3.4Oracle Document Capture version 10.1.3.5Oracle GoldenGate Veridata version 3.0.0.4Oracle JRockit version R27.6.7 and prior (JDK/JRE 1.4.2, 5, 6)Oracle JRockit version R28.0.1 and prior (JDK/JRE 5, 6)Oracle Outside In Technology version 8.3.0Oracle WebLogic Server version 7.0.7Oracle WebLogic Server version 8.1.6Oracle WebLogic Server version 9.0Oracle WebLogic Server version 9.1Oracle WebLogic Server version 9.2.3Oracle WebLogic Server version 10.0.2Oracle WebLogic Server version 10.3.2Oracle WebLogic Server version 10.3.3
