[ insider_reports_insider ]
Oracle Issues Critical Product Fixes
David Utter
Staff Writer
2008-04-16
 Insider Reports RSS Feed
Patches for the Oracle database and other products arrived as part of the company's quarterly fix cycle.
 | | Oracle Issues Critical Product Fixes |  |
The critical issues addressed by Oracle merit quick attention from administrators.
This latest update from Oracle addresses 17 critical fixes, which they described as follows:
• 15 new security fixes for the Oracle Database. 1 of these database vulnerabilities may be remotely exploitable without authentication, i.e. may be exploited over a network without the need for a username and password. No new security fixes are applicable to Oracle Database client-only installations, i.e. installations that do not have the Oracle Database installed.
• 1 new security fix for Oracle Secure Enterprise Search, which is a separate product that is not installed with the Oracle Database. • 2 new security fixes for Oracle Application Express (formerly called HTML DB). 1 of these vulnerabilities may be remotely exploitable without authentication, i.e. may be exploited over a network without the need for a username and password. "Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply fixes as soon as possible," Oracle said.
On the Oracle Security blog, Eric Maurice said the updates fix a total of 41 vulnerabilities, including those 17 critical ones mentioned previously. This also marks the first time Siebel CRM products have been in the Oracle update cycle since being acquired by Oracle in September 2005.
About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.
More insider_reports_insider Articles
Insider Reports RSS Feed
|
|
iEntry 10th Anniversary
RSS
Archive
