Attack code out for Oracle database

By Joris Evers, CNET News.com
Friday, April 21, 2006 10:54 AM

Attack code that takes advantage of a flaw in Oracle's database software has been released on the Web, raising the urgency to patch.

The exploit code was published Wednesday, only a day after Oracle released its quarterly Critical Patch Update, security provider Symantec said in an alert to users of its DeepSight intelligence service.

The exploit code was published to the popular BugTraq security mailing list. It targets the Oracle Database 10g and appears to give the attacker higher privileges on the system.

Oracle addressed close to 40 vulnerabilities in its Tuesday patch release cycle. Some of the issues would require an exploit for a successful attack, others would not, according to Symantec.

The U.S. Computer Emergency Readiness Team added its voice on Wednesday, urging users in an alert to apply Oracle's fixes.


WORTHWHILE?

0

0 votes
Blog

Talkback 0 comments

There are currently no comments for this post.


Tech Jobs Now!

Search for your ideal tech job:

News from Countries/Region

How to protect yourself from RAID-related UREs

Enterprise Servers & Storage

An Unrecoverable Read Error during a RAID rebuild can ruin an entire day. Scott Lowe talks about UREs and how you can avoid falling victim to this silent threat.


Read more »



Buying a projector? Try an LED TV instead

Blog thumbnail

If you're thinking of buying a new projector for your office meeting room, why not consider getting an LED TV instead. LED TVs are similar to LCD TVs except that..... by Lee Lup Yuen

Read more »

Tags

  1. attack
  2. authentication and encryption
  3. blog
  4. data security
  5. e - mail
  6. hacking
  7. internet
  8. malware
  9. microsoft corp.
  10. network
  11. network security
  12. pc security
  13. researcher
  14. security
  15. security management
  16. software
  17. spam and phishing
  18. symantec corp.
  19. viruses and worms
  20. web