Oracle on Tuesday shipped its quarterly security update to close 86 vulnerabilities across its product line. Fixes included six for the company's popular Database Server, 13 for Enterprise Grid Control and 18 for MySQL. The most serious hole plugged was CVE-2013-0361 in the Database Mobile/Lite Server, which is remotely exploitable without authentication. The update from Oracle came two days after it released an out-of-cycle patch for a major Java 7 vulnerability being actively exploited.