Clik here to view.
SSLv3 POODLE (CVE-2014-3566) Vulnerability and Oracle E-Business Suite Impact
Oracle E-Business Suite environments may be vulnerable to the recently disclosed “POODLE” SSLv3 vulnerability (CVE-2014-3566) depending on where SSL termination is performed for the application....
View ArticleLogging Actual Application User Names for Oracle E-Business Suite, SAP,...
Knowing which person, not just which database account, has been a challenge for database logging and auditing when working with enterprise software applications such as the Oracle E-Business Suite,...
View ArticleOracle E-Business Suite Database 12c Upgrade Security Notes
When upgrading the Oracle E-Business Suite database to Oracle Database 12c (12.1), there are a number of security considerations and steps that should be included in the upgrade procedure. Oracle...
View ArticleClik here to view.
Oracle E-Business Suite and Oracle 12c Security
Oracle 12c database, recently certified with the Oracle E-Business Suite, delivers several new important security features that will be of value to Oracle E-Business Suite professionals needing to meet...
View ArticleOracle E-Business Suite 12.0 - CPU Support Ends This Quarter
Oracle E-Business Suite 12.0 Extended Support ends on January 31, 2015. Sustaining Support does not include security fixes in the form of Critical Patch Updates (CPU). The final 12.0 CPU will be the...
View ArticleClik here to view.
Oracle EBS SYS.DUAL PUBLIC Privileges Security Issue Analysis (CVE-2015-0393)
Oracle E-Business Suite environments may be vulnerable due to excessive privileges granted on the SYS.DUAL table to PUBLIC. This security issue has been resolved in the January 2015 Oracle Critical...
View ArticleOracle EBS SYS.DUAL PUBLIC Privileges Security Issue Analysis (CVE-2015-0393)
Oracle E-Business Suite environments may be vulnerable due to excessive privileges granted on the SYS.DUAL table to PUBLIC. This security issue has been resolved in the January 2015 Oracle Critical...
View ArticleUPDATED: Oracle EBS SYS.DUAL PUBLIC Privileges Security Issue Analysis...
Oracle E-Business Suite environments may be vulnerable due to excessive privileges granted on the SYS.DUAL table to PUBLIC. This security issue has been resolved in the January 2015 Oracle Critical...
View ArticleFine Grained Auditing (FGA) and Protecting Oracle E-Business PII Data for...
With the recent news about yet another database breach of Personally Identifiable Information (PII), Integrigy had a discussion with a client about how to better protect the PII data of their...
View ArticleClik here to view.
Security Implications of Oracle Product Desupport
Oracle is aggressive in desupporting products - most product versions are desupported within 18 months of release except for terminal releases. Oracle Database 11.2.0.3 and Oracle E-Business Suite...
View ArticleClik here to view.
Oracle E-Business Suite and PCI Compliance
Achieving PCI compliance and staying PCI compliant is a big task for any business, especially when the default settings within Oracle E-Business Suite do not meet the list of requirements set forth by...
View ArticleClik here to view.
DAM tools, IBM Guardium, Oracle E-Business Suite, PeopleSoft and SAP
A question we have answered a few times in the last few months is whether or not, and if so, how easy do Database Activity Monitoring (DAM) tools such as IBM Guardium support ERP platforms such as the...
View ArticleClik here to view.
Securing Oracle E-Business Suite in the Cloud
Are you contemplating moving your Oracle E-Business Suite (EBS) to the cloud? Have you considered the various needs such as implementing upgrades, testing, auditing and security? Are you comfortable...
View ArticleOracle E-Business Suite Critical Patch Update (CPU) Planning for 2016
With the start of the new year, it is now time to think about Oracle Critical Patch Updates for 2016. Oracle releases security patches in the form of Critical Patch Updates (CPU) each quarter...
View ArticleOracle Critical Patch Update January 2016 E-Business Suite Analysis
To start, the January 2016 Critical Patch Update (CPU) for Oracle E-Business Suite (EBS) is significant and high-risk. First, this CPU with 78 EBS security fixes has 10x the number of EBS security...
View ArticleClik here to view.
When You Can’t Apply Oracle EBS 11i and R12 CPU Security Patches
Oracle E-Business Suite (EBS) 11i and 12.0 security patches and other security improvements are no longer being provided by Oracle since these products are now under Sustaining Support. After January...
View ArticleOracle E-Business Suite 11i CPU Security Patches Only Available for Tier 1...
Oracle E-Business Suite 11i is impacted by 8 security vulnerabilities in the April 2016 CPU, which includes the Oracle Configurator and Oracle Complex Maintenance, Repair, and Overhaul security bugs...
View ArticleClik here to view.
Oracle E-Business Suite Web Security Vulnerabilities Examined
The Oracle E-Business Suite (EBS) is a large and complex web application and this web application must be properly secured to prevent web attacks both internally and externally. This year alone, Oracle...
View ArticleOracle E-Business Suite 12.1 and 12.2 Support for TLS 1.2 Added
Oracle has released support for TLS 1.2 in Oracle E-Business Suite 12.1 and 12.2. Previously, Oracle E-Business Suite only supported SSLv3 and TLS 1.0, which are no longer approved for use with...
View ArticleUpcoming Webinar: Oracle Critical Patch Update October 2011 E-Business Suite...
Oracle October 2011 CPU - Oracle E-Business Suite ImpactThursday, October 27, 2:00pm - 3:00pm EDTEvery quarter, Oracle releases a Critical Patch Update (CPU) that fixes a number of security bugs in all...
View Article
