All the latest UK technology news, reviews and analysis
|
|
|
31 Jul 2008
Oracle has posted an alert for a serious flaw in its WebLogic Server and Express products.
The issue lies within the Apache Connector component used by both systems, and attack code is publicly available.
Oracle warned that the attack could be remotely exploited by an attacker without the need for any authentication information, and could give control over the targeted system.
The company has not yet issued a patch, but has provided a set of workarounds to help administrators mitigate the risk. It is currently working on a patch.
The warning comes just two weeks after Oracle issued a major security update which patched 45 vulnerabilities in 23 of its products.
Security firm Sans and the US Computer Emergency Response Team recommend that administrators read Oracle's advisory and take the suggested actions.
Latest stories from Management
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
TFL director of Games transport Mark Evers discusses how the public transport network is preparing for this summer's event
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
THIS ROLE IS LOOKING AT IMMEDIATE STARTERS AND WITH MULTI...
Sales Consultant - Data Centre, Colocation, Hosting...
Senior Interaction Designer (User Experience, UCD, Interactive...
Information Architecture / IA / User Experience / UX...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?