Oracle is planning on Tuesday to release 66 security patches affecting hundreds of products, according to a notice on its Web site.

A number of the patches are for vulnerabilities that meet the most serious risk level under the Common Vulnerability Scoring System, Oracle said. Products affected include Oracle Audit Vault, JRockit, Solaris and WebLogic Server.

Six of the patches fix vulnerabilities in Oracle's flagship database. Two of the bugs can be exploited remotely without a user name or password.

Sixteen patches target Oracle middleware products. Twelve of those vulnerabilities allow for remote exploitation without authentication, Oracle said.

Other fixes are aimed at Oracle's Enterprise Manager, PeopleSoft, JD Edwards, Glassfish and OpenOffice.

Oracle is also set to release patches for Java SE and Java for Business in February.

Chris Kanaracus covers enterprise software and general technology breaking news for The IDG News Service. Chris's e-mail address is Chris_Kanaracus@idg.com