Vulnerability researchers pick holes in Oracle patches
Joris Evers writes in C|Net News:
Oracle, the business software maker that has marketed its products as "unbreakable," faces mounting criticism over its security practices.
A quarterly patch update sent out by the company last week contained fixes for a laundry list of flaws affecting much of its lineup. But it left out some vulnerabilities that prominent security researcher David Litchfield expected to be tackled--leading him to call for a security overhaul at Oracle, including the resignation of its chief security officer.
"That was the last straw," said Litchfield, a security researcher and co-founder of U.K.-based Next Generation Security Software. "I was extremely disgusted and upset, and I think their customers should take umbrage too. Oracle needs to re-address their security philosophies--their understanding of what security is and what it means."
posted by Fergie @ 10/27/2005 06:27:00 AM
0 Comments:
Post a Comment
<< Home