Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Oracle's oops on security flaw

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Oracle's oops on security flaw
Date: Wed, 12 Apr 2006 00:51:45 -0500 (CDT) 
http://news.com.com/Oracles+oops+on+security+flaw/2100-1002_3-6060128.html

By Joris Evers 
Staff Writer, CNET News.com
April 11, 2006

Oracle accidentally let slip details last week on a security flaw it
has yet to patch.

The business software giant is usually secretive about security and
critical of researchers who publicly discuss flaws in Oracle products.  
But on April 6, it itself published a note on its MetaLink customer
Web site with details about an unfixed flaw, Alexander Kornbrust, an
independent researcher who specializes in Oracle security, said on his
Web site on Monday.

Oracle confirmed the accidental posting. "Information regarding a
security vulnerability was inadvertently posted to MetaLink," a
representative for the company said Tuesday. "We are currently
investigating events that led to the posting."

The flaw in question affects versions 9.1.0.0 through 10.2.0.3 of
Oracle's database software running on any operating system. Not only
did the posting reveal details of the vulnerability, it also included
computer code to test it, said Kornbrust, who runs Germany's Red
Database Security and often hunts for bugs in Oracle products.

The MetaLink posting was taken down. Yet, because of the posting,
Kornbrust believes the issue is now public knowledge and the bug
information should be shared publicly.

"Database administrators and developers who missed the note on
MetaLink should know of this vulnerability, in order to avoid or
mitigate the risk, if possible, while waiting for a patch from
Oracle," Kornbrust said.

The flaw opens the door to privilege escalation, meaning that database
users with limited privileges could take advantage of it to gain more
rights. "Depending on the architecture of the application, it is
possible to modify data, escalate privileges--for example, change
database passwords," Kornbrust wrote.

The vulnerability arises from an error in handling certain "views"  
created by unprivileged users, according to security analysts at the
French Security Incident Response Team. The FrSIRT deems the issue of
"moderate risk."

Oracle has no fix publicly available, but the next edition in its
regular Critical Patch Update is scheduled for release on Tuesday. "We
plan to provide our customers a patch that addresses this
vulnerability in a future quarterly Critical Patch Update," the Oracle
representative said, but could not say if it would arrive next week.

Copyright ©1995-2006 CNET Networks, Inc. All rights reserved.



_________________________________
LayerOne 2006 : Pasadena Hilton : Pasadena, CA
Infomation Security and Technology Conference
http://layerone.info
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Oracle's oops on security flaw, InfoSec News <=
Previous by Date:  [ISN] NSA concerned over computer phone service, InfoSec News
Next by Date:  [ISN] Argentina extradites Spanish hacker, InfoSec News
Previous by Thread:  [ISN] NSA concerned over computer phone service, InfoSec News
Next by Thread:  [ISN] Argentina extradites Spanish hacker, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]