The problem is none of these "solutions" are complete solutions. Most are starting points that run the gamut from simple, spreadsheet-style reporting tools to applications that integrate into your ERP system and automatically pull out, record, document and track all events material to SOX compliance, including, in some cases, elusive threads like email and phone conversations.
But that is at the high-end of the game. Oracle, for example, provides these capabilities, as well as a compliance roadmap based on the COSO (Committee of Sponsoring Organizations of the Treadway Commission) enterprise risk management framework to help you get started, said Seamus Moran, Oracle's director of financial application development. It's easier to use, however, if you're an Oracle shop. Otherwise look for a lot of custom API work or manual data entry before things run smoothly.
Although security seems to be a recurring problem with Microsoft products, shortcomings invariably are going to be found in most offerings. So, depending on a piece of software to become SOX compliance is not going to work.