Oracle has released patches addressing 82 separate security vulnerabilities in its database, application server and e-business software.
The patches are part of Oracle’s scheduled quarterly security updates, and include fixes for flaws in its PeopleSoft and JD Edwards product line.
Some of the flaws allow attackers with basic access privileges to completely take over a system, while others are potentially useful for remote internet attackers.
One Oracle database flaw allows any user with basic access privileges to assume the role of a database administrator, and also allows attackers to cover up any illegal activity.
This is the fifth critical patch update since Oracle moved to a quarterly patching schedule last autumn. The next batch is due on 12 April.