Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and remote authenticated attack vectors, aka Vuln# (1) APPS06 for Oracle CRM Gateway for Mobile Devices and (2) APPS08 for Oracle iStore.
http://www.vupen.com/english/advisories/2006/4065
http://www.us-cert.gov/cas/techalerts/TA06-291A.html
http://www.securityfocus.com/bid/20588
http://www.securityfocus.com/archive/1/449711/100/0/threaded
http://www.red-database-security.com/advisory/oracle_cpu_oct_2006.html
http://www.oracle.com/technetwork/topics/security/cpuoct2006-095368.html