1888Articles.com Logo
Sign In Register Latest Authors Latest Articles Sitemap
Submit an Article Expert Authors RSS Feed Archive Article Featured Articles Pricing Options
1888 Articles Home | Computer Articles Computer RSS

Oracle Set to Issue First Critical Patch Update of the Year

Oracle is set to issue security patches for 66 vulnerabilities under its first Critical Patch Update for the year.
Author: Eric Lopez
Article Tools:           

The latest patch addresses vulnerabilities in Oracle Database Server, Secure Backup, audit vault, fusion middleware, enterprise manager grid control, Oracle applications, industry applications, supply chain products suite, PeopleSoft and JDEdwards suite, Sun products and open office. Many developers rank vulnerabilities as critical, high and medium risk vulnerabilities. Oracle uses Common Vulnerability Scoring System (CVSS) scoring to rate the vulnerabilities.

The vulnerabilities related to audit vault, JRockit, Solaris and Weblogic Server received the highest score of 10. A remote attacker can exploit the vulnerability in audit vault bypassing any authentication requirements. More than half of the 66 vulnerabilities addressed by Oracle are exploitable by remote attackers without entering any authentication parameters. The patch addresses 21 vulnerabilities associated with various Sun products. The vulnerabilities affect VM virtual box, Solaris, java system portal server, java system communication system java system message queue and SunMC among others. Often, ethical hacker certified professionals detect vulnerabilities in products and applications. The huge security patch by Oracle is in sheer contrast to light security patch announced by Microsoft on the first second Tuesday of the year.

Exploitation of vulnerabilities adversely affects the confidentiality, availability and integrity of data and disrupts the services provided by the affected application. Attackers may gain unauthorized access to privileged databases associated with the compromised applications. Online Computer Training is crucial to educate employees on the possible implications of a data breach. Awareness of safe computing practices, precautionary measures, incident handling and first responder procedures may help in reducing security breach incidents.

The proactive nature of threats in the IT environment makes it inevitable for IT professionals to constantly upgrade their skills by attending workshops, undertaking security certifications, keeping track of the developments in IT security, sophisticated attack mechanisms used by offenders and security advisories by developers. The combination of technical know-how and awareness of latest threats may help professionals pre-empting threats and securing the IT apparatus of an organization.

About Author

EC-Council is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world.

Article Source: http://www.1888articles.com/author-eric-lopez-38614.html

Other Related Articles

Online Calendars, What Exactly do They do for Us? by Stephen Tong

Plumbing Policies by Christina Xio

Oracle Set to Issue First Critical Patch Update of the Year by Eric Lopez

Instant Loans No Faxing: No faxing aid by Thomas Gillman

11 Ways to Improve Software Testing – Part 2 by Effie Sha

11 Ways to Improve Software Testing – Part1 by Effie Sha



Computer
Certification Tests
Data Recovery
Games
Hardware
Mobile Computing
Personal Tech
Software
All Category

1888ArticlesHome| About Us| Submit an Article| Services| Contact Us| Author Guideline| Publisher Guideline| Privacy Policy| Favorite| Buddies| Site Map