Date: Fri, 20 Jul 2001 11:36:46 -0400
From: "Aaron C. Newman" <aaron@newman-family.com>
To: BUGTRAQ <BUGTRAQ@securityfocus.com>
Subject: Oracle Vulnerability Discovered in OID
There's a new vulnerability discovered in the Oracle Internet Directory
(Oracle's LDAP server). It has been in the database since 7/16, but I
haven't seen it mentioned here yet.
Here are links to the details of the advisory:
"Oracle Internet Directory contains multiple vulnerabilities in LDAP
handling code"
http://www.kb.cert.org/vuls/id/869184http://www.securityfocus.com/bid/3047http://otn.oracle.com/deploy/security/pdf/oid_cert_bof.pdf
Regards,
Aaron C. Newman
CTO/Founder
Application Security, Inc.
212-490-6022
anewman@appsecinc.com
www.appsecinc.com
-Protection Where It Counts-