Infos

Sie befinden sich aktuell in den Alexander Kornbrust Oracle Security Blog Blog-Archiven für den folgenden Tag 9 Apr 2010.

Calendar

April 2010
M	D	M	D	F	S	S
« Mrz		Aug »
	1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30

Kategorien

11g (12)
Allgemein (29)
David Litchfield (7)
Exploit (23)
Forensics (7)
Oracle Security (105)
passwords (8)
Repscan (1)
Security (22)
Sentrigo (5)
software (9)
source code audit (5)
SQL Injection (24)
Tools (24)
Trainings (3)
Tutorial (2)

Letzte Einträge

Links

Oracle Security
- RDS-blog (german)
- Repscan
SQL Injection
- RDS Oracle Exploits
- SQL Injection Cheat Sheet

Archive für 9 Apr 2010

Oracle CPU April 2010 - Prerelease

9 Apr 2010 von Alexander Kornbrust.

Yesterday Oracle released the CPU April 2010 Pre-Release. These patches will fix 47 security vulnerabilites. The database patch itself will contain 7 new security vulnerability fixes. None of these vulnerabilities are remote exploitable without authentication.

The highest CVSS base score for the Oracle database is 7.5.

The following components are affected:

• Change Data Capture
• Core RDBMS
• JavaVM
• Oracle XDB
• RDBMS Security
• XML DB

Oracle will fix one of my findings in the April 2010 CPU.

At the DOAG Expertenseminar “Oracle Hardening & Patching / Auditing & Co.” in Berlin (26.04.2010 - 27.04.2010) I will talk about this CPU as well. If you are interested you can attend this 2 day seminar.

Geschrieben in Oracle Security | Drucken | Keine Kommentare »

Oracle Security

SQL Injection

Archive für 9 Apr 2010

Oracle CPU April 2010 - Prerelease