Fed up with waiting for two years for Oracle to fix a series of bugs, German security researcher Alexander Kornbrust has gone public about a series of flaws in Oracle products.
Oracle boasts that its applications are 'unbreakable': impossible to penetrate from the outside. But one of the bugs would allow hackers to take over control over the software, Kornbrust said.
The software developer won't say why it chooses not to patch the flaws. Instead it fires back at Kornbrust: "We are disappointed when researchers act contrary to this industry best practice [of waiting to go public until a patch has been made available]," an Oracle spokesperson told Cnet.
Hopefully the irony of this comment doesn't escape Oracle chief Larry Ellison. Or it must be that it is Oracle's "best practice" to leave errors in its products unfixed for two years.
Another security expert notes that Oracle probably is just being lazy, fixing the flaws only in a new version of its software instead of issuing a patch that requires elaborate testing by both the software developer and users.
Engineer calculates that Chengdu's plan to replace streetlights with artificial moonlight would cost $100bn
Dark matter holds the Universe together - and gravitational waves could help identify it
Addison Lee is working on autonomous taxis for commuting and pleasure
IBM and Technical University of Munich team demonstrate how Shor's algorithm, which can't be cracked by conventional computers, can be solved quickly with quantum computing