RE: CVE-2012-1675 (Oracle 11gR2 RAC) - Actual Risk?

From: Allen, Brandon <Brandon.Allen_at_OneNeck.com>
Date: Wed, 13 Jun 2012 19:43:35 +0000
Message-ID: <A250F0C68C23514CA9F3DF63D60EE10E163C33BB_at_onews31>

I'm not a security expert, but it seems to me there's a significant chance that an attacker may be behind your firewall as well - either authorized (e.g. a malicious employee, consultant, customer, or other trusted party) or unauthorized (a hacker).

Regards,
Brandon

-----Original Message-----

From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Andrew Kerber

I am in agreement that the actual risk is fairly limited for most instances since everyone is behind a firewall these days

Privileged/Confidential Information may be contained in this message or attachments hereto. Please advise immediately if you or your employer do not consent to Internet email for messages of this kind. Opinions, conclusions and other information in this message that do not relate to the official business of this company shall be understood as neither given nor endorsed by it.
--

http://www.freelists.org/webpage/oracle-l Received on Wed Jun 13 2012 - 14:43:35 CDT

This message: [ Message body ]
Next message: Scott Graves: "RE: Sequence Skipping"
Previous message: Kenneth Naim: "Sequence Skipping"
In reply to: Andrew Kerber: "Re: CVE-2012-1675 (Oracle 11gR2 RAC) - Actual Risk?"
Next in thread: Eren Bayazitoglu: "RE: CVE-2012-1675 (Oracle 11gR2 RAC) - Actual Risk?"
Reply: Eren Bayazitoglu: "RE: CVE-2012-1675 (Oracle 11gR2 RAC) - Actual Risk?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message