A German security firm specializing in Oracle products has lashed out at the company, saying that Oracle has failed to fix several known security issues in its software, including a vulnerability that was reported two years ago.
On its Web site, Red-Database-Security GmbH has griped, “It seems Oracle is not interested or not able to fix these security bugs. [We] reported these bugs 650+ days ago and informed Oracle 3 months ago that bug details will be published after the next critical patch update.”
Read the complete story. (NewsFactor)