Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Oracle 9i DB Security Hole

Re: Oracle 9i DB Security Hole

From: Andrew Hardy <nobody_at_spam.from.news.AdvanticaTech.com>
Date: Thu, 18 Apr 2002 11:07:34 +0100
Message-ID: <a9m5sm$f3c$1@sun-cc204.lut.ac.uk> 





"m. fowler" <mfowler_at_dot.co.pima.az.us> wrote in message
news:e9c5a67.0204170837.5ade900_at_posting.google.com...


> I think the 'bug' can be summarized thus:  any user has read/write

> access to the data dictionary and any other user data.  This can be

> rephrased like this: there is no security within the 9.0.1 database.

> The implications of this would seem to be rather profound.




Fortunately, the patch is now available from Technet/iSupport or Metalink
(Patch 2121935).



Andy
Received on Thu Apr 18 2002 - 05:07:34 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US