Oracle to Fix 78 Security Flaws with January 2012 Critical Patch Update

Oracle revealed the security vulnerabilities that are about to be addressed with the release of the January 2012 Critical Patch Update.

The 78 weaknesses currently affect hundreds of Oracle products which is why it’s important that users update their software to make sure they’re protected against cyberattacks.

Among the affected products, we find Oracle Database 11g Release 2, Oracle Fusion Middleware 11g, Application Server 10g, Outside in Technology, WebLogic Server, E-Business Suite Release 11 and 12, Oracle PeopleSoft Enterprise CRM, and Oracle MySQL Server.

A couple of bugs currently exist in Oracle Database Server, one of which could be remotely exploited without authentication.

The same issue also exists in Fusion Middleware, E-Business Suite, JD Edwards Products, Sun Products Suite and Supply Chain Products Suite.

On the other hand, the weaknesses found in PeopleSoft Products may not be exploited remotely without the attacker possessing a username and a password.