Silicon Investor (SI) -- The First Internet Community

STOCKTALK

We've detected that you're using an ad content blocking browser plug-in or feature. Ads provide a critical source of revenue to the continued operation of Silicon Investor. We ask that you disable ad blocking while on Silicon Investor in the best interests of our community. If you are not using an ad blocker but are still receiving this message, make sure your browser's tracking protection is set to the 'standard' level.

Technology Stocks : Microsoft Corp. - Moderated (MSFT) -- Ignore unavailable to you. Want to Upgrade?

To: alydar who wrote (161)	8/16/2002 5:35:35 PM
From: Jordan A. Sheridan	Read Replies (2) \| Respond to of 19790

Rocky; Nobody is perfect, but to say Oracles 'holes' are few and far between would be a bit of a fallacy... From technet.oracle.com These are just the current security alerts, not a full list of all the patches currently available... Current Alerts (Subscribe to security alerts ) PDF Oracle9iAS OJSP Demo VulnerabilityAlert #41, 14 August 2002 Follow the workarounds as specified in the Alert. PDF Oracle Net Listener VulnerabilitiesAlert #40, 08 August 2002 Download the patches from Metalink. PDF Web Cache (Oracle9iAS) Password VulnerabilityAlert #39, 08 August 2002 Follow the workaround as specified in the Alert. PDF Oracle Net Denial of Service Security VulnerabilityAlert #38, 08 August 2002 Download the patches from Metalink. PDF OpenSSL Buffer OverflowAlert #37, Updated 09 Aug 2002 Download the patches from Metalink. HTML Security Vulnerability in Apache HTTP Server of Oracle9iAS Alert #36, Updated 12 July 2002 Download the patches from Metalink. PDF Buffer Overflow Vulnerability in Oracle9iAS Reports Server Alert #35, 05 June 2002 Download the patches from Metalink. PDF Buffer Overflow Vulnerability in Oracle Net (Oracle9i Database Server) Alert #34, 05 June 2002 Download the patches from Metalink. PDF User Privileges Vulnerability in Oracle9i Database Server Alert #33, 17 April 2002 Download the patches from Metalink. PDF Unauthorized Access Vulnerability in the Oracle E-business Suite Alert #32, 17 April 2002 Download the patches from Metalink. HTML Oracle Configurator Vulnerability Alert #31, 01 April 2002 Download the patch from Metalink and/or follow workarounds as specified in the Alert. PDF SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent, for Oracle9i Database Alert #30, 05 March 2002 Download the patch from Metalink. PDF Vulnerability in PL/SQL EXTPROC in Oracle9i Database Alert #29, 06 February 2002 Follow the workarounds as specified in the Alert. PDF Vulnerabilities in Oracle mod_plsql and JSP in Oracle9i Application Server, v1.0.2.x Alert #28, 06 February 2002, UPDATED 05 JULY 2002 Download the patch from Metalink and follow the workarounds as described in the Alert. PDF Vulnerabilities in Oracle9i Application Server Web Cache Alert #27, 28 Dec 2001 Download the patch from Metalink. PDF Potential DoS Vulnerability in Oracle9i Application Server Alert #26 Download the patch from Metalink. PDF Vulnerabilities in MODPLSQL Alert #25 Download the patch from Metalink. PDF Oracle Database Server DBSNMP Vulnerabilities 29 Nov 2001 Check status of patch availability and download patches from Metalink. PDF Security Implications of the Oracle9iAS Default SOAP Configuration 29 Nov 2001 Follow the workarounds as specified in the Alert. PDF Oracle Label Security Mandatory Security Patch 18 Oct 2001 Download the mandatory security patch from Metalink. PDF Oracle File Overwrite Security Vulnerability Follow the workarounds as specified in the Alert. PDF Oracle Trace Collection Security Vulnerability (Revised 11/29/01) Follow the workarounds as specified in the Alert. PDF Oracle9iAS Web Cache Buffer Overflow Vulnerability Download the available patches for this vulnerability from Metalink. HTML PDF Oracle Internet Directory Buffer Overflow Vulnerability Follow the workarounds as specified in the Alert or download the patches from Metalink. HTML PDF Oracle SQLNet and Net8 Malformed Packet Denial of Service Vulnerability Check the availability of patches. HTML PDF Oracle SQLNet and Net8 Buffer Overflow Vulnerability Check the availability of patches. HTML PDF Oracle SQLNet and Net8 Denial of Service Vulnerabilities Check the availability of patches. HTML PDF Oracle SQLNet and Net8 Redirect Denial of Service Vulnerability Download available patches for this vulnerability from Metalink. HTML PDF Vulnerability in the Oracle e-Business Suite Release 11i ADI Download the patch from Metalink. HTML PDF Vulnerability in Launch of Forms from Oracle e-business Suite Download the patch from Metalink. HTML Oracle Application Server Buffer Overflow Unable to reproduce vulnerability as described in BugTraq posting.. PDF Oracle JVM FilePermission Vulnerability Follow the workaround as described in the Alert. HTML PDF Oracle JSP Execution outside doc_root Vulnerability Download the available patch from Oracle Technology Network's OJSP site. HTML PDF Oracle Unintended JSP Execution Vulnerability Follow the workaround as decribed in the Alert. HTML PDF Oracle XSQL Servlet Vulnerability Patch is available on Oracle Technology Network's XSQL/XML site. HTML PDF Oracle Connection Manager Control SUID Vulnerability Download available patchsets for supported RDBMS releases from Metalink. HTML PDF Oracle Internet Directory Buffer Overflow Vulnerabilities Download available patchsets from Metalink. HTML PDF Oracle Internet Application Server and WebDB/Portal Vulnerabilities Patch under development. Use workarounds as suggested in the Alert during the interim. PDF Oracle Enterprise Manager Backup and Recovery Vulnerability Download available patches for this vulnerability from Metalink. HTML PDF Oracle SQL*Net and Net8 Listener Vulnerability Download available patches for this vulnerability from Metalink. HTML PDF Oracle Application Server DoS Attack A Denial of Service (DoS) Attack on the Oracle Application Server's Listener.