Oracle GoldenGate Veridata Apache Tomcat Denial of Service

by Carol~ Moderator - 1/16/13 12:39 PM

In Reply to: VULNERABILITIES / FIXES - January 16, 2013 by Carol~ Moderator

Oracle GoldenGate Veridata Apache Tomcat Denial of Service Vulnerability

Release Date : 2013-01-16

Criticality level : Less critical
Impact: DoS
Where: From local network
Solution Status : Vendor Patch

Software: Oracle GoldenGate Veridata 3.x

Description:
Oracle has acknowledged a vulnerability in Oracle GoldenGate Veridata, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to a bundled version of Apache Tomcat.

The vulnerability is reported in version 3.0.0.11.0.

Solution:
Apply update.

Original Advisory:
Oracle:
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html#AppendixFMW

http://secunia.com/advisories/51879/