Exploit Code Released for Oracle Hole

Filed under: — By Aviran Mordo @ 4:11 pm

Exploit code is being circulated that can crash both patched and unpatched Oracle 10g databases.

The code was posted on the Full Disclosure mailing list on Thursday.

David Litchfield, a security researcher with Next Generation Security Software Ltd., said that the code is relatively benign in that the exploit crashes servers but doesn’t run arbitrary code that might issue malicious commands.

Source: eWeek


Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress