Monthly Archive: April 2015

Hotspot Express hotEx Billing Manager 73 does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie....

Unspecified vulnerability in the Oracle Health Sciences Argus Safety component in Oracle Health Sciences Applications 8.0 allows local users to affect confidentiality via vectors related to BIP Installer. Date published : 2015-04-16 http://www.securityfocus.com/bid/74113 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Unspecified vulnerability in Oracle Sun Solaris 11.2 allows remote attackers to affect availability via vectors related to Kernel IDMap. Date published : 2015-04-16 http://www.securityfocus.com/bid/74143 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Accounting commands. Date published : 2015-04-16 http://www.securityfocus.com/bid/74122 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Unspecified vulnerability in the MySQL Utilities component in Oracle MySQL 1.5.1 and earlier, when running on Windows, allows local users to affect integrity via unknown vectors related to Installation. Date published : 2015-04-16 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html...

Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J. Date published : 2015-04-16 http://www.securityfocus.com/bid/74075 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality via unknown vectors related to Text Utilities. Date published : 2015-04-16 http://www.securityfocus.com/bid/74142 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to DDL. Date published : 2015-04-16 http://www.securityfocus.com/bid/74078 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Unspecified vulnerability in the Oracle Hyperion Smart View for Office component in Oracle Hyperion 11.1.2.5.216 and earlier, when running on Windows, allows local users to affect confidentiality, integrity, and availability via unknown vectors related...

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer. Date published : 2015-04-16 http://www.securityfocus.com/bid/74095 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Unspecified vulnerability in the Oracle Demand Planning component in Oracle Supply Chain Products Suite 11.5.10, 12.0, 12.1, and 12.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to...

Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges. Date published : 2015-04-16 http://www.securityfocus.com/bid/74073...

Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges. Date published : 2015-04-16 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html https://security.gentoo.org/glsa/201507-19

Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via vectors related to DML. Date published : 2015-04-16 http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html https://security.gentoo.org/glsa/201507-19