6 New Oracle Flaws Patched -- Redmond Channel Partner

6 New Oracle Flaws Patched

By Scott Bekker
February 20, 2003

Security researchers at CERT/CC underscored the importance of a group of newly patched vulnerabilities in Oracle Corp.'s enterprise software, including versions that run on Windows servers.

The security flaws affect the Oracle9i Database, release 1 and 2; the Oracle8i Database, version 8.1.7; the Oracle8 Database, version 8.0.6; and the Oracle9i Application Server, releases 9.0.2 and 9.0.3, according to the CERT advisory issued Wednesday.

The worst flaws among the four new buffer overflow vulnerabilities and two vulnerabilities in the application server can allow an attacker to execute arbitrary code. All of the flaws were discovered by security researchers at Next Generation Security Software, Ltd., which notified Oracle about the problems back in September.

The CERT/CC Advisory can be found at www.cert.org/advisories/CA-2003-05.html.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Printable Format

Partner Resources

Hot Topics

More Resources

6 New Oracle Flaws Patched

The 2018 Microsoft Product Roadmap

2018 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Acumatica Lands $25 Million Round To Fund Cloud ERP Expansion Plans

Microsoft Names 2018 Partners of the Year

Microsoft Raises Bar for Direct CSPs

Free Partner Guide PDFs from RCP's editors

FREE WHITE PAPERS FROM OUR SPONSORS

Sponsored Links