• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Oracle October 2006 Security Update Multiple Vulnerabilities

Severity: CRITICAL

Description:

Multiple vulnerabilities affect various Oracle applications, including:

Oracle Database
Oracle Application Server
Oracle Application Express
Oracle Collaboration Suite
Oracle E-Business Suite
Oracle Pharmaceutical Applications
Oracle PeopleSoft Enterprise PeopleTools and Portal Solutions
JD Edwards EnterpriseOne
JD Edwards OneWorld Tools

Oracle has released a Critical Patch Update advisory for October 2006 to address these vulnerabilities for supported releases. Earlier unsupported releases are likely to be affected by these issues as well.

The issues identified by the vendor affect all security properties of the Oracle products and present local and remote threats. Various levels of authorization are needed to leverage some of the issues, but other issues do not require any authorization. The most severe of the vulnerabilities could possibly expose affected computers to complete compromise.

Oracle Application Express is vulnerable to the following 35 issues:

APEX01 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX02 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX03 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX04 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX05 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX06 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

APEX07 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

APEX08 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX09 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

APEX10 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX11 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX12 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX13 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

APEX14 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX15 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX16 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

APEX17 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

APEX18 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX19 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX20 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX21 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX22 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX23 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

APEX24 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX25 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

APEX26 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX27 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX28 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX29 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX30 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

APEX31 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX32 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APEX33 - This issue affects the Application Express component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

APEX34 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APEX35 - This issue affects the Application Express component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.


Oracle Application Server is vulnerable to the following 13 issues:

FORM01 - This issue affects the Oracle Forms component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

FORM02 - This issue affects the Oracle Forms component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

FORM03 - This issue affects the Oracle Forms component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

OC4J02 - This issue affects the Oracle Containers for J2EE component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

OC4J03 - This issue affects the Oracle Containers for J2EE component and requires Oracle Remote Method Invocation access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

OC4J04 - This issue affects the Oracle Containers for J2EE component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

OC4J05 - This issue affects the Oracle Containers for J2EE component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

OHS01 - This issue affects the Oracle HTTP Server component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

OHS03 - This issue affects the Oracle HTTP Server component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

REP01 - This issue affects the Oracle Reports Developer component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server. This is a cross-site scripting issue affecting the 'showenv' and 'parsequery' parameters.

REP02 - This issue affects the Oracle Reports Developer component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server. This is a cross-site scripting issue affecting the 'cellwrapper' and 'delimiter' parameters.

SSO01 - This issue affects the Oracle Single Sign-On component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

SSO02 - This issue affects the Oracle Single Sign-On component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.


Oracle Pharmaceutical Applications is vulnerable to the following issue:

PHAR01 - This issue affects the Oracle Clinical Remote Data Capture Option component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.


Oracle Database Server is vulnerable to the following 22 issues:

DB01 - This issue affects the XMLDB component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server. This is an SQL-injection vulnerability affecting the 'enable_hierachy_internal' procedure of 'XDB.DBMS_XDBZ0'.

DB02 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server. Exploiting this issue requires 'Create session' privileges.

DB03 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

DB04 - This issue affects the Change Data Capture (CDC) component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server. This is an SQL-injection issue affecting the 'SYS.DBMS_CDC_IMPDP' package.

DB05 - This issue affects the Change Data Capture (CDC) component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB06 - This issue affects the Change Data Capture (CDC) component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB07 - This issue affects the Change Data Capture (CDC) component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB08 - This issue affects the Change Data Capture (CDC) component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB09 - This issue affects the Core RDBMS component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server. An attacker with 'create session' permissions can insert, update, and delete data via inline views.

DB10 - This issue affects the Core RDBMS component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server. This is an SQL-injection issue affecting 'I_SET_TUNING_PARAMETER' and 'SELECT_SQLSET' of 'DBMS_SQLTUNE_INTERNAL'.

DB11 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

DB12 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB13 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server. This is an SQL-injection issue in the first parameter of 'convert_lt_lrs_layer' in 'MDSYS.SDO_LRS'.

DB14 - This issue affects the XMLDB component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB15 - This issue affects the XMLDB component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server. This is an SQL-injection vulnerability affecting the 'disable_hierachy_internal' procedure of 'XDB.DBMS_XDBZ0'.

DB16 - This issue affects the Change Data Capture (CDC) component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB17 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

DB18 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

DB19 - This issue affects the Database Scheduler component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

DB20 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

DB21 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

DB22 - This issue affects the Oracle Spatial component and requires Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.


Oracle E-Business Suite and Applications are vulnerable to the following 13 issues:

APPS01 - This issue affects the Oracle Exchange component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APPS02 - This issue affects the Oracle Application Object Library component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APPS03 - This issue affects the Oracle Applications Framework component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APPS04 - This issue affects the Oracle Applications Technology Stack component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

APPS05 - This issue affects the Oracle Balanced Scorecard component and requires Forms or HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APPS06 - This issue affects the Oracle CRM Gateway for Mobile Devices component and requires Forms or HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APPS07 - This issue affects the Oracle Email Center component and requires Forms or HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APPS08 - This issue affects the Oracle iStore component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APPS09 - This issue affects the Oracle Scripting component and requires Forms or HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APPS10 - This issue affects the Oracle Trading Community component and requires Forms or HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APPS11 - This issue affects the Oracle Universal Work Queue component and requires Forms or HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

APPS12 - This issue affects the Oracle Application Object Library component and requires HTTP or Oracle Net access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

APPS13 - This issue affects the Oracle Install Base component and requires Forms or HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.


Oracle Collaboration Suite is vulnerable to the following 2 issues:

OC4J01 - This issue affects the Oracle Containers for J2EE component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

OPMN01 - This issue affects the Oracle Process Mgmt & Notification component and requires ONS access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.


Oracle HTTP Server is vulnerable to the following 6 issues:

OHS02 - This issue affects the Oracle HTTP Server component and requires local or HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity and availability of the server.

OHS04 - This issue affects the Oracle HTTP Server component and requires HTTPS access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

OHS05 - This issue affects the Oracle HTTP Server component and requires HTTPS access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

OHS06 - This issue affects the Oracle HTTP Server component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the integrity of the server.

OHS07 - This issue affects the Oracle HTTP Server component and requires HTTPS access. No authentication is required to exploit this issue. Successful attacks may compromise the availability of the server.

OHS08 - This issue affects the Oracle HTTP Server component and requires local access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.


Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne are vulnerable to the following 9 issues:

JDE01 - This issue affects the JD Edwards HTML Server component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

PSE01 - This issue affects the PeopleTools component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality, integrity, and availability of the server.

PSE02 - This issue affects the PeopleTools component and requires HTTP access. No authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

PSE03 - This issue affects the PeopleTools component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

PSE04 - This issue affects the PeopleTools component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and availability of the server.

PSE05 - This issue affects the PeopleSoft Enterprise Portal component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality and integrity of the server.

PSE06 - This issue affects the PeopleTools component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

PSE07 - This issue affects the PeopleTools component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

PSE08 - This issue affects the PeopleTools component and requires HTTP access. Successful authentication is required to exploit this issue. Successful attacks may compromise the confidentiality of the server.

The Oracle advisory describes 101 vulnerabilities in all. This BID will be updated as further analysis of the individual issues reveals more detailed information.

Affected Products:

• HP Oracle for OpenView 8.1.7
• HP Oracle for OpenView 9.1.01
• HP Oracle for OpenView 9.2
• Oracle Application Server 10g 9.0.4
• Oracle Application Server 10g 9.0.4 .1
• Oracle Application Server 10g 9.0.4 .2
• Oracle Application Server 10g 9.0.4 .3
• Oracle Application Server Release 2 9.0.2 .3
• Oracle Collaboration Suite Release 1 10.1.2
• Oracle Collaboration Suite Release 2 9.0.4 .2
• Oracle Developer Suite 10.1.2.0.2
• Oracle Developer Suite 10.1.2.2
• Oracle Developer Suite 6i
• Oracle Developer Suite 9.0.4 .1
• Oracle Developer Suite 9.0.4 .2
• Oracle Developer Suite 9.0.4 .3
• Oracle E-Business Suite 11.0.0
• Oracle E-Business Suite 11i 11.5.10
• Oracle E-Business Suite 11i 11.5.10 CU2
• Oracle E-Business Suite 11i 11.5.7
• Oracle E-Business Suite 11i 11.5.8
• Oracle E-Business Suite 11i 11.5.9
• Oracle HTML DB 1.5.0
• Oracle HTML DB 1.5.1
• Oracle HTML DB 1.6.0
• Oracle HTML DB 1.6.1
• Oracle HTML DB 2.0.0
• Oracle JD Edwards EnterpriseOne 8.95
• Oracle JD Edwards EnterpriseOne 8.95.0 _B1
• Oracle JD Edwards EnterpriseOne 8.95.0 _F1
• Oracle JD Edwards EnterpriseOne 8.95.J1
• Oracle JD Edwards EnterpriseOne 8.96
• Oracle OneWorld Tools SP23
• Oracle Oracle10g Application Server 10.1.2
• Oracle Oracle10g Application Server 10.1.2 .0.1
• Oracle Oracle10g Application Server 10.1.2 .0.2
• Oracle Oracle10g Application Server 10.1.2 .1.0
• Oracle Oracle10g Application Server 10.1.3 .0.0
• Oracle Oracle10g Application Server 9.0.4 .1
• Oracle Oracle10g Application Server 9.0.4 .2
• Oracle Oracle10g Application Server 9.0.4.0
• Oracle Oracle10g Enterprise Edition 10.1.0 .0.3
• Oracle Oracle10g Enterprise Edition 10.1.0 .0.4
• Oracle Oracle10g Enterprise Edition 10.2.0 .1
• Oracle Oracle10g Enterprise Edition 10.2.0 .2
• Oracle Oracle10g Personal Edition 10.1.0 .0.3
• Oracle Oracle10g Personal Edition 10.1.0 .0.4
• Oracle Oracle10g Personal Edition 10.2.0 .1
• Oracle Oracle10g Personal Edition 10.2.0 .2
• Oracle Oracle10g Standard Edition 10.1.0 .0.3
• Oracle Oracle10g Standard Edition 10.1.0 .0.4
• Oracle Oracle10g Standard Edition 10.1.0 .0.5
• Oracle Oracle10g Standard Edition 10.2.0 .2
• Oracle Oracle10g Standard Edition 10.2.0.1
• Oracle Oracle8i Enterprise Edition 8.1.7.4
• Oracle Oracle8i Standard Edition 8.1.7.4
• Oracle Oracle8i Standard Edition 8.1.7.4
• Oracle Oracle9i Application Server 1.0.2 .2
• Oracle Oracle9i Application Server 9.0.2 .3
• Oracle Oracle9i Application Server 9.0.3 .1
• Oracle Oracle9i Enterprise Edition 9.0.1 .5 FIPS
• Oracle Oracle9i Enterprise Edition 9.0.1.4
• Oracle Oracle9i Enterprise Edition 9.0.1.5
• Oracle Oracle9i Enterprise Edition 9.2.0 .0.5
• Oracle Oracle9i Enterprise Edition 9.2.0 .6
• Oracle Oracle9i Enterprise Edition 9.2.0 .7
• Oracle Oracle9i Personal Edition 9.0.1 .5 FIPS
• Oracle Oracle9i Personal Edition 9.0.1.4
• Oracle Oracle9i Personal Edition 9.0.1.5
• Oracle Oracle9i Personal Edition 9.2.0 .0.5
• Oracle Oracle9i Personal Edition 9.2.0 .6
• Oracle Oracle9i Personal Edition 9.2.0 .7
• Oracle Oracle9i Standard Edition 9.0.1 .5 FIPS
• Oracle Oracle9i Standard Edition 9.0.1.4
• Oracle Oracle9i Standard Edition 9.0.1.5
• Oracle Oracle9i Standard Edition 9.2.0 .0.5
• Oracle Oracle9i Standard Edition 9.2.0 .6
• Oracle Oracle9i Standard Edition 9.2.0 .7
• Oracle PeopleSoft Enterprise PeopleTools 8.22
• Oracle PeopleSoft Enterprise PeopleTools 8.46
• Oracle PeopleSoft Enterprise PeopleTools 8.47
• Oracle PeopleSoft Enterprise PeopleTools 8.48
• Oracle PeopleSoft Enterprise Portal 8.8
• Oracle PeopleSoft Enterprise Portal 8.9
• Oracle PeopleSoft Enterprise Tools 8.46 GA
• Oracle PeopleSoft Enterprise Tools 8.46.12
• Oracle PeopleSoft Enterprise Tools 8.47 GA
• Oracle PeopleSoft Enterprise Tools 8.47.01
• Oracle PeopleSoft Enterprise Tools 8.47.02
• Oracle PeopleSoft Enterprise Tools 8.47.03
• Oracle PeopleSoft Enterprise Tools 8.47.04
• Oracle PeopleSoft Enterprise Tools 8.47.04
• Oracle Pharmaceutical Applications 4.5.0
• Oracle Pharmaceutical Applications 4.5.1

References:

• David Litchfield: Analysis of the Oracle October 2006 Critical Patch Update
• Oracle: Oracle Critical Patch Update - October 2006
• Oracle: Oracle Homepage

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.