Call: +44 (0)7759 277220 Call
Blog

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Researcher: Oracle Patch Set Flawed Again"] [Next entry: "Some fight back on Oracle security bugs - old news article"]

Exploit circulating for newly patched Oracle bug - It can crash an unpatched database server



I just came across Robert McMillan's news story on Computer World. The article is titled "Exploit circulating for newly patched Oracle bug - It can crash an un-patched database server". It talks about the exploit that is circulating the net that i talked about yesterday here. This exploit can be used to crash a database and as Robert says now provides a big incentive for Oracle customers to patch their databases. The article goes on to mention that the exploit can be used via SQL Injection techniques. The bottom line is patch as soon as you can.