Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Two news items about Oracles new security advisory"] [Next entry: "Another critical patch update news article - In German"]

Eweek talks about the Critical Patch Update - January 2005 release

I just found a news article on eweek titled "Oracle Patch Fixes 23 Vulnerabilities" that discusses the latest Oracle security patch and advisory. The article is written by Ryan Naraine. It follows much the same pattern as the other two articles I found but also mentions a security research firm Secunia that suggests that the flaws are "moderately critical" and that SQL Injection exploits are possible. The article goes on to talk about two possible exploits suggested by Secunia and also talks about the previous Oracle advisories and the improvements in this new one.