Slashdot Mirror

← Back to Stories (view on slashdot.org)

Emergency Workaround For Oracle 0-Day

Posted by kdawson on from the maybe-somebody-shorted-the-stock dept.

Almost Live writes "Oracle has released an out-of-cycle alert to offer mitigation for a zero-day exploit that's been posted on the Internet. The emergency workaround addresses an unpatched remote buffer overflow that's remotely exploitable without the need for a username and password, and can result in compromising the confidentiality, integrity, and availability of the targeted system." Whoever published the vulnerability and matching exploit code did not contact Oracle first.

3 of 152 comments (clear)

  1. Re:Worthless by Anonymous Coward · · Score: -1, Offtopic

    Awesome, I like being off topic too, just so I can assert my authority over others.

    Look, I'm not lying, this post just proved it.

    (Anyway, thanks for the worthless comment but jlarocco is right, why link to another regurgitation site about an alert that came from Oracle itself?)

  2. Re:Worthless by Anonymous Coward · · Score: -1, Offtopic

    Yah, whatever jlarocco. You're so clever. Nobody sees through your little misdirection. Laughable.

  3. Re:Haha! by AI0867 · · Score: 0, Offtopic

    Hah, everyone knows Bruce Willis is vulnerable to water. Maybe this exploit includes drowning the server?