Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "A great snort rule to detect the mod_plsql 0-day bug"] [Next entry: "Interesting thought on security advisories"]

Oracle have released a FAQ to counter the mod_plsql 0-day bug

Alex emailed me yesterday morning to let me know about a new FAQ released by Oracle on metalink about the recent 0-day bug in mod_plsql released by David Litchfield. The FAQ is here. Thanks also to Doug for emailing me to let me know about his post - (broken link) FAQ For Oracle PL/SQL Gateway Security Issue Released by David Litchfield which is about the same document but the link is slightly different on Metalink.