Thanks, I'll look into that. It was identified as http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0422. From oracle support: "....databases are not subject to the java applet vulnerabilities, so published JDK CVE's do not apply to the database. Still wondering about Enterprise Manager Grid on one of the servers. Joel Patterson Database Administrator 904 727-2546 From: alanbort@xxxxxxxxx [mailto:alanbort@xxxxxxxxx] On Behalf Of Guillermo Alan Bort Sent: Saturday, January 12, 2013 5:31 PM To: Patterson, Joel Cc: oracle-l Subject: Re: 0day virus maybe this will help: http://developers.slashdot.org/story/13/01/12/039219/oracle-knew-of-latest-java-0-day-security-hole-in-august Alan.- On Sat, Jan 12, 2013 at 6:15 PM, Patterson, Joel <Joel.Patterson@xxxxxxxxxxx<mailto:Joel.Patterson@xxxxxxxxxxx>> wrote: Does anyone have information on the 0day virus as it pertains to oracle and Java? There is concern that perhaps there could be an issue come Monday morning. -- //www.freelists.org/webpage/oracle-l -- //www.freelists.org/webpage/oracle-l