Zero-day details underscore criticism of Oracle

Zero-day details underscore criticism of Oracle
Robert Lemos, SecurityFocus 2006-01-25

ARLINGTON, Virginia -- A security researcher released details of a critical flaw in Oracle's application and Web software on Wednesday, criticizing the company for not cooperating with the security community and taking too long to fix software issues that threaten its customers.

Expand all | Post comment

Zero-day details underscore criticism of Oracle 2006-01-26
Anonymous

I fail to see how this can be called a "zero-day" vulnerability. The vulnerability was not discovered because it was being actively exploited, but because a security researcher was investigating the strength of the software. Had he kept this quiet, not informed Oracle or the public, coded his own attack and then used it, then it could be classed as a zero-day exploit. Your use of the term in the headline is there purely to grab the readers attention. In fact, the term *only* appears in the headline and so proves my point.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11371/32987#32987

Zero-day details underscore criticism of Oracle 2006-01-26
Julio Cesar Fort

Am glad we stopped using Oracle ! 2006-01-27
Anonymous

Zero-day details underscore criticism of Oracle 2006-01-27
Neelu Tripathy