Unspecified vulnerability in the Oracle Single Sign-On component in Oracle Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.2, and 10.1.4.0.1; Collaboration Suite 10.1.2; and Enterprise Manager 10.1.2 has unknown impact and remote attack vectors, aka AS10.
http://www.vupen.com/english/advisories/2007/3626
http://www.vupen.com/english/advisories/2007/3524
http://www.us-cert.gov/cas/techalerts/TA07-290A.html
http://www.securitytracker.com/id?1018823
http://www.oracle.com/technetwork/topics/security/cpuoct2007-092913.html
http://secunia.com/advisories/27409