Home » RDBMS Server » Security » CVE-2012-3132 and Express Editions of Oracle DB (Oracle 11g vs Oracle Database 11g Express Edition)
CVE-2012-3132 and Express Editions of Oracle DB [message #568274] Wed, 10 October 2012 07:54 Go to next message
eastcoastbbc
Messages: 2
Registered: October 2012
Junior Member
Good morning,

I was wondering if the Express Edition of Oracle Database inherited the same vulnerabilities as the whole edition?

Namely I have a few hosts that have Oracle Database 11g Express Edition installed and I was wondering if they would then be vulnerable to CVE-2012-3132 and specifically the easily exploitable flaw associated with it, detailed below:

Can't use links until I've posted 5 messages, ugh..link obfu with x's and []
hxxp://threatpost[.]com/en_us/blogs/flaw-oracle-logon-protocol-leads-easy-password-cracking-092012

Any help/insight would be greatly appreciated.

Thank you,
Jarad
Re: CVE-2012-3132 and Express Editions of Oracle DB [message #568278 is a reply to message #568274] Wed, 10 October 2012 08:26 Go to previous messageGo to next message
Michel Cadot
Messages: 57616
Registered: March 2007
Location: Nanterre, France, http://...
Senior Member
Account Moderator
Yes.

Regards
Michel
Re: CVE-2012-3132 and Express Editions of Oracle DB [message #568279 is a reply to message #568278] Wed, 10 October 2012 08:28 Go to previous message
eastcoastbbc
Messages: 2
Registered: October 2012
Junior Member
Very much appreciated. Thank you kindly.
Previous Topic: user account locked error
Next Topic: Accounting: Cause of Oracle user being locked.
Goto Forum:
  


Current Time: Mon Apr 21 07:50:45 CDT 2014

Total time taken to generate the page: 1.14420 seconds