Slashdot Mirror

← Back to Stories (view on slashdot.org)

Oracle Zero-Day Flaw Project Cancelled

Posted by ScuttleMonkey on from the patches-not-so-welcome dept.

Benny Folds writes "Cesar Cerrudo of Argeniss has suddenly cancelled plans to release daily zero-day flaws in Oracle databases during the first week in December. Just days before the project was due to start, Cerrudo announced that 'due to many problems,' the WoODB (Week of Oracle Database Bugs) is being scrapped. He did not elaborate on the reasons for the cancellation."

17 of 61 comments (clear)

  1. oracle by crushkill · · Score: 4, Funny

    he probably wanted to focus more on family issues, since its christmas season

    1. Re:oracle by icebike · · Score: 3, Funny

      Or equally likely, the mysterious packet slipped under his door at
      midnight with pictures of his loved ones photographed through
      that sniper scope sort of changed his priorities.

      Why is that same white van parked across the street again...

      --
      Sig Battery depleted. Reverting to safe mode.
  2. LOL by 1001011010110101 · · Score: 4, Funny

    1. Start a security consulting firm
    2. Request 0 day vulnerabilities from everyone for an event
    3. Cancel Event
    4. Profit!

    1. Re:LOL by Josh+Lindenmuth · · Score: 3, Insightful

      Seems like this was his plan from the beginning. I can't imagine he would risk his clients' security by releasing all these bugs ... he already got tons of publicity from /. and elsewhere.

      --
      Huh? Don't mind me, I'm just the new guy.
  3. If only by vga_init · · Score: 3, Funny

    If only they would cancel the production of flaws too. :-/

  4. With good reason by SuperKendall · · Score: 4, Funny

    One reason may have been the scary looking bearded dude holding a samurai sword staring at him through the window every day...

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
    1. Re:With good reason by bill_mcgonigle · · Score: 5, Funny
      This isn't too hard to figure out. Look at the announcement retraction page. See that field of seemingly unimportant binary numbers in the background? Run it through OCR and take the digits as sets of 16-bit big-endian numbers, and you come up with the following numbers: 17,21,39,76,203,230,238,245,279. Now, look at the letters at each of those positions in the announcement and you get:

      The Week of OracLe DAtabase Bugs

      We aRe sad to announce that due to many pRoblems the Week of Oracle Database Bugs gets suspended.

      We would like to ask for apologizes to people who supported this and were reallY excited with the idea, alSo we woUld likE to thank the people who contributeD with Oracle vulnerabilities.


      Coincidence? Yeah, sure.
      --
      My God, it's Full of Source!
      OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
  5. Larry Ellison by Cally · · Score: 3, Interesting

    ...probably made him an offer he couldn't refuse.

    --
    "None are more hopelessly enslaved than those who falsely believe they are free." -- Goethe
  6. The two thugs who visited his family by stox · · Score: 3, Funny

    had nothing to do with it. They were just trying to let him know about a new life insurance plan.

    --
    "To those who are overly cautious, everything is impossible. "
  7. Re:Fear Him! by udderly · · Score: 4, Funny

    Have a look--it's obvious that this guy's a homicidal manic.

    From the main page:

    It's an old joke in Silicon Valley. Q: What's the difference between God and Larry Ellison? A: God doesn't think he's Larry Ellison.

  8. I think the phone call went like this by User+956 · · Score: 4, Funny

    Cesar Cerrudo of Argeniss has suddenly cancelled plans to release daily zero-day flaws in Oracle databases during the first week in December.

    I think the phone call with Oracle went like this: "Hi, Is this Cesar? Yeah, this is Oracle. We found a suitcase full of money, we think it belongs to you."

    --
    The theory of relativity doesn't work right in Arkansas.
    1. Re:I think the phone call went like this by jonnythan · · Score: 3, Funny

      More like "We found a suitcase full these funny red sticks with clocks attached. Where did your wife park her car today?"

  9. Cancelled due to lack of poverty by 192939495969798999 · · Score: 3, Funny

    "Due to this new lack of poverty, er I mean bugs, the oracle bug project has been cancelled."

    --
    stuff |
  10. Oracle by RAMMS+EIN · · Score: 4, Insightful

    Consider the hostile position Oracle takes when it comes to publishing benchmark results, I would not at all be surprised if they had an even more hostile position regarding publishing vulnerabilities.

    --
    Please correct me if I got my facts wrong.
  11. The Truth.. 6 bugs just won't cut it.. by madsheep · · Score: 3, Funny

    Well it's obvious why it had to be cancelled guys. When you have a week that's 7 days long and you can only come up with 6 bugs, you've got to cancel the things. Imagine the embarassment of starting on Sunday.. getting to Saturday and being one short.

  12. Simple by Billosaur · · Score: 4, Funny

    Larry Ellison assured him there were no flaws in Oracle.

    --
    GetOuttaMySpace - The Anti-Social Network
  13. Receptionst: Cesar, Mr Ellison is on line 1 by sp3298622 · · Score: 4, Funny

    L: Cesar, Listen, there are no vulnerabilities in Oracle - Cancel your show
    C: No bugs!? You're kidding, I have had so many submissions, I might have to extend it to a month!
    Receptionist: Cesar, you're wife is in line two, something about the power at home being off, do you want to take it now?
    C: Just a sec, I am giving our old buddy here the low-down
    L: As I was saying, there are NO vulnerabilities
    C: what are you talking about, I just said...
    Receptionist: Cesar, it's Bobby on line three, he's asking if it's ok if he goes and plays with this new friend he met?
    C: What new friend? he's home sick today! I'll take it in a minute.
    L: So about those vulnerabilities, you sure about that?
    C: Larry, you must be living in LA LA Land, what don't you understand?
    Receptionist: Cesar, it's your mom on Line four, she's saying thanks for arranging the nice social worker and he's going to take her for a quiet relaxing walk.
    C: social worker? I don't remember anything about that, ask her to ...
    L: Cesar, I don't think you understand.
    C: I don't understand?! you are the who doesn't understand, I am going to disclose every single...
    Receptionist: Cesar, Your dad just called to ask where exactly is that restaurant he's suppose to meet you for lunch at 12?
    C: Lunch? I am going to see him tomorrow for dinner..
    L: Optimistic fella you are ol' Cesar.
    C: hmm, well actually now that you mention it, there weren't really that many submissions.
    L: Well, are we still on for Golf then?