Oracle Management Pack for Oracle GoldenGate Apache Tomcat

by Carol~ Moderator - 1/16/13 1:27 PM

In Reply to: VULNERABILITIES / FIXES - January 16, 2013 by Carol~ Moderator

Oracle Management Pack for Oracle GoldenGate Apache Tomcat Denial of Service Vulnerability

Release Date : 2013-01-16

Criticality level : Less critical
Impact: DoS
Where : From local network
Solution Status : Vendor Patch

Software: Oracle Management Pack for Oracle GoldenGate 11.x

Description:
Oracle has acknowledged a vulnerability in Oracle Management Pack for Oracle GoldenGate, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to a bundled version of Apache Tomcat.

The vulnerability is reported in version 11.1.1.1.0.

Solution:
Apply updates (please see the vendor's advisory for details).

Original Advisory:
Oracle:
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html#AppendixFMW

http://secunia.com/advisories/51880/