News

6 New Oracle Flaws Patched

Security researchers at CERT/CC underscored the importance of a group of newly patched vulnerabilities in Oracle Corp.'s enterprise software, including versions that run on Windows servers.

The security flaws affect the Oracle9i Database, release 1 and 2; the Oracle8i Database, version 8.1.7; the Oracle8 Database, version 8.0.6; and the Oracle9i Application Server, releases 9.0.2 and 9.0.3, according to the CERT advisory issued Wednesday.

The worst flaws among the four new buffer overflow vulnerabilities and two vulnerabilities in the application server can allow an attacker to execute arbitrary code. All of the flaws were discovered by security researchers at Next Generation Security Software, Ltd., which notified Oracle about the problems back in September.

The CERT/CC Advisory can be found at www.cert.org/advisories/CA-2003-05.html.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Microsoft Offers More Help on Windows Server 2008 Upgrades

    Microsoft this week published additional help resources for organizations stuck on Windows Server 2008, which fell out of support on Jan. 14.

  • Microsoft Ups Its Carbon Reduction Goals

    Microsoft on Thursday announced a corporatewide carbon reduction effort that aims to make the company "carbon negative" by 2030.

  • How To Dynamically Lock Down an Unattended Windows 10 PC

    One of the biggest security risks in any organization happens when a user walks away from their PC without logging out. Microsoft has the solution (and it's not a password-protected screensaver).

  • First Stable Chromium-Based Microsoft Edge Browser Released

    Microsoft on Wednesday announced the first release of its Chromium-based Microsoft Edge browser at the "stable" commercial-release stage.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.