Full Disclosure mailing list archives

Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover

From: Valdis.Kletnieks () vt edu
Date: Mon, 14 Dec 2009 09:52:21 -0500

On Mon, 14 Dec 2009 16:35:37 +0200, Ofer Maor said:

Oracle's main claim is that this interface was removed in Oracle 12,


Oracle knows *damned* well that very few of their sites are running 12.
Most are still on 11, a lot on 10, and probably more than a few scary places
still running 9 on Solaris 7 and 8 boxes. ;)

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Michael Coyne (Dec 14)
- Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Ofer Maor (Dec 14)
  - Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Valdis . Kletnieks (Dec 14)
  - Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Michael Coyne (Dec 14)
    - Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Ofer Maor (Dec 14)
    - Re: Hacktics Advisory Dec09: Oracle eBusinessSuite - Multiple Vulnerabilities Allow Remote Takeover Michael Coyne (Dec 14)