OpenSSL Heartbleed (CVE-2014-0160) and Oracle E-Business Suite Impact

Integrigy has completed an in-depth analysis of the "Heartbleed" vulnerability in OpenSSL (CVE-2014-0160) and the impact on Oracle E-Business Suite environments 11i and R12 (11.5, 12.0, 12.1, and 12.2).  The key issue is where in the environment is the SSL termination point both for internal and external communication between the client browser and application server.  If the SSL termination point in the Oracle E-Business Suite application servers, then the (more...)