Oracle Database Might Allow Bypassing of Security Restrictions

A vulnerability exists in Oracle Database that might allow intruders to bypass security restrictions. Users with SELECT Object Privilege on base tables can delete rows from a view and might be able to insert and update data or escalate privileges. Oracle is working on a patch for the problem. A workaround suggested by Red Database Security is available.

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish