受影响系统: Oracle E-Business Suite 11i 11.5.8
Oracle E-Business Suite 11i 11.5.7
Oracle E-Business Suite 11i 11.5.6
Oracle E-Business Suite 11i 11.5.5
Oracle E-Business Suite 11i 11.5.4
Oracle E-Business Suite 11i 11.5.3
Oracle E-Business Suite 11i 11.5.2
Oracle E-Business Suite 11i 11.5.1
Oracle Applications 11.0 不受影响系统: Oracle E-Business Suite 11i 11.8
Oracle E-Business Suite 11i 11.7
Oracle E-Business Suite 11i 11.6
Oracle E-Business Suite 11i 11.5.9 周详描述: Oracle E-Business Suite是由Oracle公司推出的新一代电子商务套件。Oracle E-Business Suite存在多个未明SQL注入问题,远程攻击者能够利用这个漏洞获得应用程式敏感信息或操作数据库。 攻击者能够通过WEB页部分输入字段中注入SQL代码而执行SQL命令或其他数据库功能,现在没有周详漏洞细节提供。 补丁下载: Oracle已为此发布了一个安全公告(OracleSA#67)连同相应补丁:
OracleSA#67:Oracle Security Alert 67-Unauthorized Access Vulnerabilities in Oracle EBusiness
链接:http://otn.oracle.com/deploy/security/pdf/2004alert67.pdf Oracle Patch Metalink Patches for E-Business Suite
http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=274375.1
| 
.text:''):(d.getSelection?d.getSelection():'');void(keyit=window.open('http://my.poco.cn/fav/storeIt.php?t='+escape(d.title)+'&u='+escape(d.location.href)+'&c='+escape(t)+'&img=http://www.h-strong.com/blog/logo.gif','keyit','scrollbars=no,width=475,height=575,status=no,resizable=yes'));keyit.focus(); "添加到POCO网摘"){kind=logo}
Rss Feed
