"Java is the biggest vulnerability for US computers" states CSO Magazine. The Oracle E-Business Suite (EBS) runs on Java - both the server and professional forms interface. There are multiple Java installations as part of the Oracle EBS implementation on the server as well as distributed to end-users. Often these Java installations are not upgraded or sometimes cannot be upgraded to the most recent Java version. Typically, between 5 to 20 Java security vulnerabilities are patched each quarter by the Oracle Critical Patch Update to fix security bugs such as Java deserialization. This educational webinar reviews the usage of Java within Oracle EBS, discusses how Java security vulnerabilities can used to exploit the different EBS tiers, and provides strategies on how to protect your environment from attackers exploiting unpatched Java security bugs.
|Integrigy - Oracle EBS and Java Security What You Need to Know.pdf