|
 |
dijous, 28 / abril / 2005 |
Oracle Products Contain Multiple Vulnerabilities. Informe sobre l'existència de nombroses vulnerabilitats a diversos productes d'Oracle, amb efectes que vandes de l'accés no autoritzat, l'execució remota de codi, la divulgació d'informació i la denegació de servei. Els productes vulnerables són:
Oracle Database 10g Release 1, versions 10.1.0.2, 10.1.0.3, 10.1.0.3.1, 10.1.0.4 (10.1.0.3.1 is supported for Oracle Application Server only)
Oracle9i Database Server Release 2, versions 9.2.0.5, 9.2.0.6
Oracle9i Database Server Release 1, versions 9.0.1.4, 9.0.1.5, 9.0.4 (9.0.1.5 FIPS) (all of which are supported for Oracle Application Server only)
Oracle8i Database Server Release 3, version 8.1.7.4
Oracle Application Server 10g Release 2 (10.1.2)
Oracle Application Server 10g (9.0.4), versions 9.0.4.0, 9.0.4.1
Oracle9i Application Server Release 2, versions 9.0.2.3, 9.0.3.1
Oracle9i Application Server Release 1, version 1.0.2.2
Oracle Collaboration Suite Release 2, versions 9.0.4.1, 9.0.4.2
Oracle E-Business Suite and Applications Release 11i, versions 11.5.0 through 11.5.10
Oracle E-Business Suite and Applications Release 11.0
Oracle Enterprise Manager Grid Control 10g, versions 10.1.0.2, 10.1.0.3
Oracle Enterprise Manager versions 9.0.4.0, 9.0.4.1
PeopleSoft EnterpriseOne Applications, versions 8.9 SP2 and 8.93
PeopleSoft OneWorldXe/ERP8 Applications, versions SP22 and higher
Tot això recollit a l'informe mensual d'actualitzacions d'Oracle.
|
07:03 (# Enllaç permanent) | Comentaris: | Trackback:
|
|
[The Inquirer] Hacker deletes own hard drive
A CHAT CHANNEL spat ended when a wannabe hacker was duped into deleting his own hard drive.
The 26 year-old German claimed he was the baddest hacker in town and threatened to attack a moderator on #stopHipHop's RC Channel because he thought he'd been thrown out.
He demanded the moderator cough up his IP address and prepare to be hacked.
Sense comentaris :)
|
06:57 (# Enllaç permanent) | Comentaris: | Trackback:
|
|
Netcraft ofereix una nou servei per a lluitar contra els atacs phishing: una base de dades, actualitzada en temps real, amb les URL identificades i verificades que es fan servir en els atacs de suplantació (phishing). Està pensada per a poder ser integrada dins de tota mena de productes (servidors de correu, proxy, sistemes de detecció d'intrusions, monitorització de la xarxa...)
The feed can be used to prevent customers and employees from succumbing to phishing attacks and presents an excellent opportunity for ISPs to win new customers and to reassure existing customers by taking a proactive stance against fraud by providing phish-free web and mail.
The phishing site feed is a continuously updated encrypted database of patterns that match phishing URLs reported by the Netcraft Toolbar community and validated by Netcraft.
The feed employs a versioning system to ensure that customers who have fallen behind can catch up incrementally, or if necessary, by requesting the full database.
The feed is available for a wide range of proxy servers and mail servers, while reference code and technical documentation is supplied to demonstrate how to integrate the feed into bespoke content filters, firewalls, network IDS and similar applications.
|
06:36 (# Enllaç permanent) | Comentaris: | Trackback:
|
|
© Copyright 2003-2005 Xavier Caballe.  . Si no s'indica expressament el contrari, el material publicat en aquest weblog es distribueix d'acord amb la llicència Creative Commons. El contingut és responsabilitat única i exclusivament del seu autor i no té cap relació amb les seves activitats professionals.
|
|
