Oracle Patch Set Plugs Widespread Server Holes

Oracle issued a security alert and downloadable patch release Tuesday to plug multiple vulnerabilities scattered across its database server products. The patches are designed to lock down exploits affecting a variety of Oracle’s Database, Application Server, Collaboration Suite and Enterprise Manager products.


According to the alert, the new patches eliminate security flaws in the Database Server and the Listener offerings. Officials at Redwood Shores, Calif.-based Oracle Corp. listed its Database Server exposure risk as “high” if unpatched, and they noted that exploiting some of the vulnerabilities requires network access but no valid user account.


http://www.eweek.com/article2/0,1759,1641525,00.asp

Leave a Reply