���J���F2008/07/20 15:36�@�ŏI�X�V���F2009/01/22 9:54

TRJVN-2008-03
Oracle ���i�ɂ����镡���̐Ǝ㐫�ɑ΂���A�b�v�f�[�g 2008�N7��

�T�v


Oracle ����e���i�����̃Z�L�����e�B�p�b�`�����J����܂����B

�e�����󂯂�V�X�e��
�@- Oracle Database
�@- Oracle Application Server
�@- Oracle E-Business Suite and Applications
�@- Oracle Enterprise Manager
�@- Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
�@- Oracle BEA

�ڂ����́AOracle ���񋟂���������m�F�������B

���n��C�x���g


���� (JST)���e
2008-07-20 00:08 Bugtraq
Oracle Database Local Untrusted Library Path Vulnerability
���؃R�[�h�Ɋւ���� (CVE-2008-2613)
#Cid: 30177-joxeankoret-2.txt
2008-07-19 Bugtraq
Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit
���؃R�[�h�Ɋւ���� (CVE-2008-2595)
#Cid: 30177-joxeankoret.py
2008-07-18 ���{�I���N��
Oracle Critical Patch Update Advisory - July 2008
2008-07-17 06:38 �V�}���e�b�N
ThreatCON (2) => (1)
2008-07-16 21:00 ���{�q���[���b�g�E�p�b�J�[�h
HPSBMA02133: SSRT061201 rev.9 - HP Oracle for OpenView (OfO) Critical Patch Update
2008-07-16 05:45 SANS Internet Storm Center
Oracle (and BEA, Hyperion and TimesTen) critical patch update July 15th, 2008 (Version: 2)
2008-07-16 05:38 US-CERT
Oracle Releases Critical Patch Update for July 2008
US-CERT Current Activity �Ƃ��ăA�b�v�f�[�g���
2008-01-25 iDefense
Oracle Database Local Untrusted Library Path Vulnerability
�Ǝ㐫���x���_�ɕ�
2008-01-03 Application Security Inc.
Team SHATTER Security Alert Oracle 2008-04: SQL Injection in Oracle Application Server (WWEXP_API_ENGINE)
Oracle Application Server
�Ǝ㐫���x���_�ɕ�
2007-12-27 Application Security Inc.
Team SHATTER Security Alert Oracle 2008-07: Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter)
Oracle Enterprise Manager Database Control
�Ǝ㐫���x���_�ɕ�
2007-12-18 iDefense
Oracle Database DBMS_AQELM Package Buffer Overflow Vulnerability
�Ǝ㐫���x���_�ɕ�
2007-10-09 NGSSoftware
#NISR15072008: PLSQL Injection in Oracle Application Server
Oracle Database Vuln# DB23
�Ǝ㐫���x���_�ɕ�
2007-09-24 Application Security Inc.
Team SHATTER Security Alert Oracle 2008-05: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN)
Oracle Database Server
�Ǝ㐫���x���_�ɕ�
2007-08-24 Application Security Inc.
Team SHATTER Security Alert Oracle 2008-06: Cross-site scripting in Oracle Enterprise Manager (REFRESHHOME Parameter)
Oracle Enterprise Manager Database Control
�Ǝ㐫���x���_�ɕ�
2007-05-11 iDefense
Oracle Internet Directory Pre-Authentication LDAP DoS Vulnerability
�Ǝ㐫���x���_�ɕ�


�Q�l���