Oracle works to patch rash of security holes
As Computer Weekly went to press, the software company said it would release patches for the flaws shortly, but it did not reveal any details about the nature of the problems. A security company has claimed it alerted Oracle to the problems in January.
NGS Software said it identified 34 new holes in Oracle software, which range from buffer overflow attacks to SQL insertion techniques for gaining access to the Oracle database engine.
David Litchfield, managing director of NGS Software, declined to give further details of the security flaws before Oracle had released the patches to avoid aiding hackers.
By Cliff Saran at Computer Weekly.
[ Read more ]