Slashdot Mirror

← Back to Stories (view on slashdot.org)

Emergency Workaround For Oracle 0-Day

Posted by kdawson on Tuesday July 29, 2008 @03:04PM from the maybe-somebody-shorted-the-stock dept.

Almost Live writes "Oracle has released an out-of-cycle alert to offer mitigation for a zero-day exploit that's been posted on the Internet. The emergency workaround addresses an unpatched remote buffer overflow that's remotely exploitable without the need for a username and password, and can result in compromising the confidentiality, integrity, and availability of the targeted system." Whoever published the vulnerability and matching exploit code did not contact Oracle first.

5 of 152 comments (clear)

nice timing by Anonymous Coward · 2008-07-29 15:11 · Score: 5, Funny

This would seem to be a pretty decent answer to the previous thread (How do geeks get exercise).
1. Re:nice timing by jd · 2008-07-29 15:59 · Score: 5, Funny
  
  Hmmm. Is it indoors? Check. Lots of sweating? Check. Potential for heart attacks in unfit people? Check. Ok, it meets the criteria.
  
  --
  It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
Worthless by jlarocco · 2008-07-29 15:21 · Score: 5, Funny

For christ's sake. At least link to the fucking Oracle page.
If I wanted to read ZDNet, I'd just go to fucking ZDNet.

--
Maybe not
Re:That's why I use... by ruiner13 · 2008-07-29 16:56 · Score: 5, Funny

SQL: >select * from pages(start=1,end=1222) order by name asc
[command executing...]
[timeout ID-10-T - CPU has entered sleep mode]
/usr/bin >

--
today is spelling optional day.
Re:One man's ruffianity... by ozphx · 2008-07-29 19:17 · Score: 5, Funny

And the correct answer is "No, but I kiss yours."

--
3laws: No freebies, no backsies, GTFO.