OMiT Computing

Tel: 01772 915045

Latest Articles

You are here: Home News Oracle's January Security Update Fixes 270 Flaws

Oracle's January Security Update Fixes 270 Flaws

Oracle have urged their customers to apply their latest released security update without delay. The first Oracle critical patch update for 2017 sees 270 security flaws fixed. Of these 100 are remotely executable without needing credentials, which means that systems can be compromised without the need for a username and password! Most of the 100 remotely executable flaws can be exploited over the HTTP protocol. 

17 of the fixes are for Java SE, 16 of which can be exploited remotely without credentials. The update contains fixes for products across Oracle's range including Flexcube, Oracle Applications, Fusion Middleware, MySQL and Peoplesoft. 

27 vulnerabilities are fixed in MySQL of which 5 are remotely executable. There are 8 fixes for Oracle's Point of sale applications including 1 for the MICROS system that is remotely executable without authentication. Point of sale applications are increasingly becoming targets for malware that is designed to steal customer card details.

 

This website uses cookies to manage authentication, navigation, and other functions. By using our website, you agree that we can place these types of cookies on your device.

View e-Privacy Directive Documents

You have declined cookies. This decision can be reversed.

You have allowed cookies to be placed on your computer. This decision can be reversed.