Financial Applications Security Weblog
Secure Applications for Open Markets
March 2002
Sun Mon Tue Wed Thu Fri Sat
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31            
Feb   Apr

Home
Advisories
Web Services
Web Servers
Middle Tier
Databases
Mobile
Identification
Investment Banking Technologies
Retail Banking
Payment Systems
XML



Click to see the XML version of this web page.

Click here to send an email to the editor of this weblog.

Click on the coffee mug to add Pelle Braendgaard's Instant Outline to your Radio UserLand buddy list. 		 
 

21 March 2002
 

Men accused of Bloomberg extortion lose court bid to avoid extradition [Security Focus]
4:11:32 PM      comment []  

Oracle - Unbreakable?

If you're running Oracle 9i Application Server and/or Database Server please have a look at this from CERT. There are a broad range of security holes you should now about even if you're just in Development. The largest I can see are a bunch of Buffer Overflows in the Appservers PL/SQL module. David Litchfield of NGSSoftware has provided a bunch of recommendations that you can reach from the CERT Advisory:

CA-2002-08: Multiple vulnerabilities in Oracle Servers


8:42:37 AM      comment []  

Sue Ellison, analyst tells Oracle users. Multiplexing license caper perplexes punters [The Register]
7:29:21 AM      comment []  


© Copyright 2002 Pelle Braendgaard.
Last update: 21/03/2002; 08:29:22. <