Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
![]() |
![]() |
Home -> Community -> Mailing Lists -> Oracle-L -> Litchfield on October patch
from bugtraq:
Having downloaded and given the Oracle October patch a cursory examination, some of the flaws Oracle told me were being fixed, remain exploitable. Once again the patch is not sufficient. I will conduct a full investigation of the patch over the coming few days and post some recommendations once complete. Incidently, it's good to see that the NGS Disclosure policy of not publicly releasing details of the flaws "fixed" seems to work as a useful fail safe mechanism.
More to follow...
Cheers,
David Litchfield
NGSSoftware Ltd
http://www.ngssoftware.com/
-- http://www.freelists.org/webpage/oracle-lReceived on Wed Oct 19 2005 - 17:59:56 CDT
![]() |
![]() |