Oracle Security Slowness

By Rory2 on January 26, 2006 8:32 AM | No Comments

Zero-day details underscore criticism of Oracle

Article about the slowness with which Oracle is patching its software. Given the fact that many companies will be using Oracle software to store a lot of their critical information, it's quite worrying that they can take over 2 years to deploy a fix for a bug.

We've seen with the current worm/botnet problems, a trend for security exploits to be part of professional criminal activities. So I wonder what the likelihood that there are Blackhats actively working on finding database flaws... I'd say reasonably likely, with that likelihood increasing over time.

So if we assume that, then we can assume that they'll be finding the same things that security researchers have been finding and notifying Oracle of, at which point it becomes pretty worrying that Oracle are so unresponsive in terms of patching these flaws...

Categories:

Leave a comment

Categories

Monthly Archives

Pages

Powered by Movable Type 4.32-en

Search

About this Entry

This page contains a single entry by Rory2 published on January 26, 2006 8:32 AM.

Blog Worm.... was the previous entry in this blog.

Overview of security updates in .NET 2.0 is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.