resource center
  See your link here
|
IDG News Service -
Oracle Corp. is warning customers to apply software patches it released in August, citing the availability of malicious code that can exploit unpatched vulnerabilities in its software.
The company acknowledged in a recent security alert describing the vulnerabilities that it has received notification that there are published exploits for "some of the issues" addressed in the alert. The company didn't provide information about the exploits.
Oracle didn't immediately respond to a request for comment on the reported exploits.
The security holes affect a number of Oracle products, including versions of its 8i, 9i and 10g Database, Application Server and Enterprise Manager software, according to a bulletin (download PDF) posted by Oracle on Aug. 31. The company also released a patch for the vulnerabilities.
The exposure for vulnerabilities in Oracle's Database Server and Application Server was described as "high" because attackers could take advantage of the flaws with network access but without a valid user account and password. The hole in Enterprise Manager was rated a "medium" risk, because attackers would need both access to the network running the Enterprise Manager and a valid operating system user account on the machine running Enterprise Manager, Oracle said.
In September, the U.S. government's Computer Emergency Readiness Team issued an alert about the flaws, noting that they could be used to shut down or take control of vulnerable systems running the software or to corrupt or steal data from the Oracle databases.
Oracle strongly recommends that affected customers apply the software patches "without delay."
IDG.net
Can Heuristic Technology Help Your Company Fight Viruses?
What is Heuristic Technology and how can it help safeguard your business against viruses? Learn more.
Eradicate Spam & Gain 100% Asurance of Clean Mailboxes
Get this paper now!
Effectively Implementing Datacenter Automation
Effectively select and deploy the best datacenter automation solution today!
Mastering eDiscovery: The IT Manager's Guide to Preservation, Protection & Production
Get this paper now!
Aligning IT to Business: The Rising Importance of Application Delivery Networks
Application Delivery Networking (ADN) will play a vital role in helping enterprises incorporate strategic technologies to achieve business initiatives.
Not Just Words: Enforce Your Email and Web Acceptable Usage Policies
Get this paper now!
Security Pathways to Less Complexity
Find pathways to security solutions, possibly peace of mind about your information security.
Mitigate Risk, Lower Costs and Improve Network Efficiency
Create a stable IP network that not only meets today's challenges, but is flexible enough to also meet future demands.
Sign up to receive updates on the latest Security resources
CIO
Computerworld
CSO
DEMO
GamePro
Games.net
IDC
IDG
IDG Connect
IDG Knowledge Hub
IDG TechNetwork
IDG Ventures
IDG.net
InfoWorld
ITwhitepapers
ITworld
JavaWorld
LinuxWorld
Macworld
Network World
PC World
The Industry Standard
Copyright © 1994 - 2009 Computerworld Inc. All
rights reserved. Reproduction in whole or in part in any form or medium
without express written permission ofComputerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc. |
