Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2014-07-13 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Oracle July 2014 Update Pre-Notification

Published: 2014-07-13
Last Updated: 2014-07-14 14:34:47 UTC
by Tony Carothers (Version: 1)
0 comment(s)

Oracle has released a preview of patches to be released, seen here, on Tuesday, July 15, 2014, and includes updates to business critical systems, such as Oracle Database, WebLogic server, and Fusion.  The most concerning aspect of the majority of vulnerabilities discussed is the one phrase â??may be exploited over a network without the need for a username and passwordâ?.  The most critical update, imho, that is being released Tuesday is the Java fixes that are being released (20 security fixes!), which give the vulnerability a pristine CVSS Base Score of 10!!  Woohoo, way to go Oracle and Team Java!

But please donâ??t take my word for all of this, go take a look for yourself, and see what the week ahead has in store.

tony d0t carothers --gmail

Keywords: Java Oracle
0 comment(s)
ISC StormCast for Monday, July 14th 2014 http://isc.sans.edu/podcastdetail.html?id=4059
Diary Archives