Oracle recently patched three of its products to address a vulnerability that could cause a denial of service.
"The out-of-band patches addressed denial-of-service vulnerabilities that were present in several Oracle products, the company said in a security alert issued Jan. 31," writes eWeek's Fahmida Y. Rashid. "A remote user would be able to exploit this vulnerability, CVE 2011-5035, and affect the system's availability, according to Oracle."
"The affected products are Oracle Application Server 10g Release 3 version 10.1.3.5.0, Oracle WebLogic Server versions 9.2.4, 10.0.2, 11gR1, 12cR1, and Oracle iPlanet Web Server 7.0 and Oracle Java System Web Server 6.1," Rashid writes. "The Oracle Containers for J2EE component in the Application Server was patched."
Go to "Oracle Patches DoS Flaw in Database 10g, WebLogic, iPlanet" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204660766;s=9477;x=7936;f=201812281312070;u=j;z=TIMESTAMP;a=20392931;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.