Thursday, April 15, 2021

Oracle Scrambles to Contain 0-Day Disclosure Snafu

ZDNet: Four years ago, security researcher Joxean Koret notified Oracle about a security vulnerability in its database software. Koret thought that Oracle patched the problem in its latest security release, so he published the details about the vulnerability that he had found and encouraged users to apply the patch.

The only problem–Oracle hadn’t actually fixed the bug.

As a result, hackers now know details about a vulnerability which, according to Oracle, “is remotely exploitable without authentication, and if successfully exploited, can result in a full compromise of the targeted Database.” Oracle still doesn’t have a patch for the vulnerability, but it has published a workaround, which enterprises are encouraged to use to maintain the security of their Oracle databases.

Similar articles

Latest Articles

NVIDIA’s New Grace ARM/GPU...

This week is NVIDIA’s GTC, or GPU Technology Conference, and they likely should have changed the name to ATC because this year – it...

What is Data Segmentation?

Definition of Data Segmentation Data segmentation is the process of grouping your data into at least two subsets, although more separations may be necessary on...

The Conversational AI Revolution:...

One of the things I’m looking forward to seeing at next week’s NVIDIA GTC event is an update on their Conversational AI efforts. I’m fascinated...

Edge Computing

Edge computing is a broad term that refers to a highly distributed computing framework that moves compute and storage resources closer to the exact...