Current Activity - Oracle Releases Security Alert for Oracle HTTP Server Products

[Current Activity <us-cert () us-cert gov>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

US-CERT Current Activity

Oracle Releases Security Alert for Oracle HTTP Server Products

Original release date: September 19, 2011 at 8:39 am
Last revised: September 19, 2011 at 8:39 am


Oracle has released a security alert to address a vulnerability in
Apache HTTPD.  This vulnerability affects:
  * Oracle Fusion Middleware 11g Release 1, versions 11.1.1.3.0,
    11.1.1.4.0, 11.1.1.5.0
  * Oracle Application Server 10g Release 3, version 10.1.3.5.0
  * Oracle Application Server 10g Release 2, version 10.1.2.3.0

Exploitation of this vulnerability may allow an attacker to cause a
denial-of-service condition.

US-CERT encourages users and administrators to review the Oracle
Security Alert for CVE-2011-3192 and apply any necessary updates to
help mitigate the risks. Additional information can be found in
Vulnerability Note VU#405811

Relevant Url(s):
<http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html>

<http://www.kb.cert.org/vuls/id/405811>

====
This entry is available at
http://www.us-cert.gov/current/index.html#oracle_releases_security_alert_for2

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBTndCOz6pPKYJORa3AQJQ1QgAmM2DavMjHeRV6zqoRYCeJrvVQuXYO00d
30MZNqav4+X5pUeAoEIu8e/4ZEt2PArP2XRBs5CI0n0ha4fOfjuy/SjJhadzxS/K
3MgDu2mYwrdix+Y1mMy5WF+64UV0d0/LaqJ+YLjBaw2OormNwadXkMVU3a8t4nGj
mhRRADEM81g7XTYYE10twFtm5rOHzrlNbA+ZiZJUpjUNo9cc4IFAedNYur+hgq77
xDvUdXRHZBRMK+aMMoZw/FTX9fK8X/aR6G0Wsg0vXkwVsi6v+X/aHIF5HyAQqQuW
Htm7kEgP7RQaeiEb+dERDt4O0je6lDqY4pyPFIq0EWpUNujqzMLAfQ==
=O/vG
-----END PGP SIGNATURE-----