May 9th, 2009 . by DarkFiber Consulting
Oracle has released their Critical Patch Update for April 2009 to address 43 vulnerabilities across several products. This update contains the following security fixes:
- 16 updates for Oracle Database Server
- 12 updates for Oracle Application Server
- 3 updates for Oracle Applications
- 4 updates for Oracle PeopleSoft and JDEdwards Suite
- 8 updates for BEA Products Suite
DarkFiber Consulting encourages users and administrators to review the April Critical Patch Update and apply any necessary updates.
October 14th, 2008 . by DarkFiber Consulting
In April 2008, Microsoft released Security Advisory 951306 to alert users of a vulnerability in Microsoft Windows. This vulnerability may allow local users, or users who can legitimately run code in the context of IIS or SQL Server, to operate with elevated privileges. Recently, Microsoft Security Response Center (MSRC) posted several blog entries indicating that the Security Advisory was updated to reflect the availability of public exploit code. A patch or update is not available to correct this issue.
DarkFiber Consulting encourages users and administrators to do the following to help mitigate the risks: