Oracle E-Business Suite Flaw Allows Downloads of Documents

Oracle today in its Critical Patch Update addressed a critical vulnerability in its Oracle E-Business Suite of business applications that allows for the download of business documents. Continue reading Oracle E-Business Suite Flaw Allows Downloads of Documents

Record Oracle Patch Update Addresses ShadowBrokers, Struts 2 Vulnerabilities

Oracle released a record 299 patches, including a fix for a Solaris vulnerability disclosed by the ShadowBrokers, and another for the recently disclosed Apache Struts 2 flaw. Continue reading Record Oracle Patch Update Addresses ShadowBrokers, Struts 2 Vulnerabilities

Oracle EBusiness Suite ‘Massive’ Attack Surface Assessed

Oracle bug hunter David Litchfield scoured Oracle EBusiness Suite looking for vulnerabilities and shared what he found during a Black Hat talk. Continue reading Oracle EBusiness Suite ‘Massive’ Attack Surface Assessed

Oracle Patches Record 276 Vulnerabilities with July Critical Patch Update

Oracle fixed a record 276 vulnerabilities – more than half of which are remotely exploitable – as part of its July Critical Patch Update on Tuesday afternoon. Continue reading Oracle Patches Record 276 Vulnerabilities with July Critical Patch Update