Results 1 to 4 of 4
  1. #1
    Join Date
    Mar 2001
    Location
    Lexington, KY
    Posts
    606

    Unanswered: Emergency Patch!

    http://news.cnet.com/news/0-1003-200-6469566.html
    Researchers have found a security hole in Oracle's 8i database program that could let an outside attacker take over the software and--in the case of a Windows computer--the entire system.

    Researchers at Covert Labs, part of Network Associates' PGP Security group, discovered the vulnerability and ranked its risk as "high." Oracle has acknowledged the problem, fixed it in the newest 9i version of its software and issued a patch for the earlier releases.
    Thanks,

    Matt

  2. #2
    Join Date
    Feb 2001
    Location
    NC, USA
    Posts
    200
    That probably explains why the 9i version for NT is delayed.

  3. #3
    Join Date
    Mar 2001
    Location
    Lexington, KY
    Posts
    606
    Originally posted by Paul
    That probably explains why the 9i version for NT is delayed.
    That's true although they've already fixed 9i for unix and issued a patch for 8i right? NT is such a beast for ANY RDBMS so I would think they're running into NT/2000 'issues'.
    Thanks,

    Matt

  4. #4
    Join Date
    Jul 2001
    Location
    Phoenix, AZ
    Posts
    1
    The following is from the Oracle Metalink website concerning the 8i patch for Solaris:

    This patch is obsolete. Please see the reason stated below. If a replacement patch is not mentioned, contact Oracle Support for help.

    Reason for Obsolescence
    This patch is being withdrawn because of a regression of bug 1654631 which is fixed as bug 1814117 . The patch will be made available again with the new fix included as soon as possible.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •