"Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Critical Patch Update fixes as soon as possible," the company said in a statement.
The patch update contains 13 new security fixes for the Oracle Database Server, patching eight different Oracle Database components: Application Express, Export, Listener, Net Foundation Layer, Network Layer, Oracle OLAP, Oracle Secure Backup, and TimesTen In-Memory Database.
Six of the fixes are for Oracle Database Server itself, and four of those vulnerabilities can be remotely exploitable without authentication -- as in, no username or password would be required. Two of the fixes are for the TimesTen In-Memory Database, and can also be exploited remotely, without authentication. Finally, there are five security fixes for Oracle Secure Backup, three of which are remotely exploitable without authentication.
http://www.techweb.com/article/showArticle?articleID=225800060§ion=news
No comments:
Post a Comment