Joshua Wright, a renown security expert and researcher at SANS Institute, released details of how to breech the Oracle password hashing algorithm during a presentation at the SANS Network Security conference in Los Angeles.
He demonstrated an attack tool he wrote that makes it possible to recover the plaintext password from even very strong, well written passwords within minutes.
Along with colleague Dr Carlos Cid from the Royal Holloway, University of London, Joshua Wright has written a paper which details how passwords are encrypted before being stored in Oracle databases.
Oracle were alerted to the vulnerability in July.
The SANS Institute (SysAdmin, Audit, Networking, and Security) is an organisation that focuses on providing computer education and information security training.
The paper is available from the SANS Reading Room.
Comcast's £29.7bn winning bid more than twice the £13.7bn Rupert Murdoch valued Sky at just eight years ago
A nuclear strike has been considered, but Bruce Willis is nowhere in sight
Spray-on antenna could enable seamless integration of antennas with everyday objects
Parker Solar Probe, TESS and GOLD missions will deliver exciting data, claims NASA