Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.1, and 11.1.2.2 allows remote attackers to affect integrity via vectors related to SSO Engine. Per: http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Please refer to My Oracle Support Note 1952939.1 for instructions on how to address this issue.
Publication date: Thu, 22 Jan 2015 00:59:00 +0000