Multiple vulnerabilities have been reported in Oracle Application Server, which can be exploited by malicious users to manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system and by malicious people to conduct HTTP response splitting attacks and cause a DoS (Denial of Service).

1) Some errors exists in the XML Parser within the XML Developer Kit:

For more information see vulnerabilities #7 and #9:
SA45274

2) An error in the BPEL Console can be exploited by authenticated users to cause a DoS within the BPEL Process Manager.

3) An error exists in the Servlet Runtime in OC4J within the Oracle Containers for J2EE.

For more information:
SA45282

The vulnerabilities are reported in the following products:
* Oracle Application Server 10g Release 3, version 10.1.3.5.0.
* Oracle Application Server 10g Release 2, version 10.1.2.3.0.

Solution
Apply updates (please see the vendor's advisory for details).

Provided and/or discovered by
3) Alexandr Polyakov, DSecRG.

It is currently unclear who reported these vulnerabilities as the Oracle Critical Patch Update for July 2011 only provides a bundled list of credits. This section will be updated when/if the original reporter provides more information.

Changelog
Further details available to Secunia VIM customers

Original Advisory
Oracle:
http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html#AppendixAS

DSECRG-12-018:
http://dsecrg.com/pages/vul/show.php?id=418

Other references
Further details available to Secunia VIM customers

Deep Links
Links available to Secunia VIM customers