Be "more aggressive"...
Published: 25 January 2006 08:30 GMT
Analyst group Gartner has warned IT managers to be "more aggressive" when protecting their Oracle applications because, according to Gartner, they are not getting enough help from the database giant.
Gartner published an advisory on its website just days after Oracle's latest quarterly patch cycle, which included a total of 103 fixes with 37 related to flaws in the company's database products. Some of the flaws carry Oracle's most serious rating, which means they're easy to exploit and an attack can have a wide impact.
According to the advisory, which was posted on Monday by Gartner analyst Rich Mogull, "the range and seriousness of the vulnerabilities patched in this update cause us great concern... Oracle has not yet experienced a mass security exploit but this does not mean that one will never occur".
Mogull said that because Oracle has historically been seen as having very strong security and many of Oracle's products are located "deep within the enterprise", IT managers often neglect their patching duties.
Mogull, who advises managers to pay more attention to securing their Oracle applications, added: "Moreover, patching is sometimes impossible, due to ties to legacy versions that Oracle no longer supports. These practices are no longer acceptable."
He said IT managers should:
Oracle did not immediately respond to requests for comment.
In response to the Oracle patch release, Symantec raised its ThreatCon global threat index to Level 2, which means an outbreak is expected. It typically does that after a patch release because malicious hackers might use the fixes as a blueprint for attacks.
CNET News.com's Joris Evers contributed to this report
Munir Kotadia writes for ZDNet Australia
Fixes for 33 flaws: Oracle goes patch-tastic
Oracle password system under fire
Oracle CFO Maffei to step down
Oracle's Ellison to fork out $22m in legal fees
Oracle-Siebel mega-merger gets EC green light
Oracle and SAP squabble over market share and customers
Responsibilities: Day to day operations, troubleshooting, back up and recovery, performance and patch management.nd and 3rd line support, liaise with ...
Other responsibilities include: Implementing preventative measures; minimising business disruption; minimising risk of security attack, malicious ...
Order management - preventative and breakdowns Split valuation, Timesheets SAP Technical experience preferred in Researching problems and issues OSS ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead
Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy