Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

Oracle rushes emergency fix for critical web logic


By MYBRANDBOOK


Oracle rushes emergency fix for critical web logic

Oracle has released a rare out-of-band patch for a remote code-execution flaw in several versions of its WebLogic server.

 

Additional fixes add that the original patch was released as part of the company's October 2020 security updates as a fix for vulnerability, tracked as CVE-2020-14882, while the new patch, tracked as CVE-2020-14750.

 

CVE-2020-14882, if exploited, can allow an attacker to execute malicious code on one of Oracle's WebLogic servers with elevated privileges before its authentication kicks in.

 

Though, this vulnerability can be easily exploited by sending a booby-trapped HTTP GET request to the management console of a WebLogic server.

 

Once Oracle released a patch for the vulnerability, proof-of-concept (PoC) exploit code was made public and cybercriminals have already started using it to launch attacks against vulnerable servers.

 

In fact, the SANS Internet Storm Center (ISC) reported that attackers had already launched attacks against its WebLogic honeypots.

 

“Oracle tried to fix the path traversal bug in the WebLogic console (CVE-14882) by introducing a patch that blacklisted path traversal. They had good reason to do it in a hurry (attacks already in the wild). In Oracle's rush to fix it, they made a pretty simple error: attackers could avoid the new path traversal blacklist (and thus bypass the patch) by ... wait for it... changing the case of a character in their request,” said Brett Winterford, Editor at Risky. Biz in the tweet.
 BREAKING NEWS  BREAKING NEWS
Zscaler unveils Digital Experience Monitoring Copilot

Zscaler unveils Digital Experience Monitoring Copilot...

Zscaler has announced groundbreaking innovations - ZDX Copilot, Hosted Mon...

Ola Krutrim unveils its AI vision for India

Ola Krutrim unveils its AI vision for India...

Ola's artificial intelligence platform, Krutrim has revealed its plans to ...

Tamil Nadu Police Facial Recognition Portal faced breach

Tamil Nadu Police Facial Recognition Portal faced breach...

A security flaw was discovered in the facial recognition webpage of the Ta...

With iOS 18, Apple to fully invest in AI

With iOS 18, Apple to fully invest in AI...

Tim Cook, the CEO of Apple, has made reference to sophisticated AI features...

 TECHNO TRENDS  Placeholder image
BHIM to join e-commerce, competing with PhonePe and Google Pay

BHIM to join e-commerce, competing with PhonePe and Google Pay

The government-supported payment software BHIM is getting ready to join t...

The latest version of X helps prevent deepfakes on social medi

The latest version of X helps prevent deepfakes on social medi

To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...

India and Namibia collaborate on a payment system similar to U

India and Namibia collaborate on a payment system similar to U

Once operational, the platform will enable digital transactions in Namibia,...

Sebi issues show-cause notices to six Adani group firms

Sebi issues show-cause notices to six Adani group firms

Sebi issued show-cause notices to six Adani Group firms, including Adani ...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
S.S. Rajamouli and Disney+ Hotstar brings the untold story of

S.S. Rajamouli and Disney+ Hotstar brings the untold story of

Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

Bharti Airtel (“Airtel”), one of India’s leading telecommunications

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
 MOVERS & SHAKERS  Placeholder image
New Relic names Katrina Wong as CMO

New Relic names Katrina Wong as CMO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

The cloud-native identity and governance platform solutions provider Saviy
 OPEN YOUR EYES  Placeholder image

India Celebrates MSME Day, Focusing Business Continuity During COVID-19 Outbreak
Cyber Security, AI/ML & Public Cloud Top Priorities for CIOs
Changing Dynamics Of Cybersecurity In The Age of Coronavirus
The demand for touch-less services are on huge demand
The disruption in the technology demands to ensure business continuity
 INTERVIEWS  Placeholder image
AMD Pensando innovation CONTINUES

AMD Pensando innovation CONTINUES

MEASURE AND IMPROVE YOUR SECURITY POSTURE WITH KEYSIGHT

MEASURE AND IMPROVE YOUR SECURITY POSTURE WITH KEYSIGHT

Is your security team prepared for the next cyber-attack? Are your security
Acuutech continues to focus on innovation, customer focus and

Acuutech continues to focus on innovation, customer focus and

Acuutech with its strong partnership with Lenovo and Microsoft forayed into
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
TALLY SOLUTIONS PVT. LTD.

TALLY SOLUTIONS PVT. LTD.


SAMSUNG INDIA ELECTRONICS PVT. LTD.

SAMSUNG INDIA ELECTRONICS PVT. LTD.


  STERLITE TECHNOLOGIES LTD.

  STERLITE TECHNOLOGIES LTD.


IBALL WORLDWIDE PVT. LTD.

IBALL WORLDWIDE PVT. LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

A clear vision and mission helping attain milestones

Understanding the project goals, responsibilities,...

Implementing effective technical goals for strategic growth

Start by setting clear goals and objectives for th...

Digitalization and digitization: The only way to move forward for Enterprises

While we end up deploying multiple tools and defin...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Madhabi Puri Buch

Madhabi Puri Buch is the chairperson of the securities regulatory body...

Technology Icons Of India 2023: Harsh Jain

Harsh Jain is an Indian Entrepreneur, the co-founder and CEO of the In...

Technology Icons Of India 2023: Nikhil Rathi

Nikhil Rathi, Co-founder & CEO of Web Werks, a global leader in Data C...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Partnership, innovation, and technology: key drivers of Redington’s achievements

The nature of the IT industry has undergone significant transformation over th...

Supertron’s holistic approach leveraging its comprehensive transformation

Supertron is prepared to participate & support integration of technology adapt...

Iris Global Services prides itself in prioritizing customer’s needs and overcoming IT challenges

Considering India’s fast-growing economy, the future of the Indian IT indust...

 PSU  Placeholder image

CERT-IN protecting the cyber security space of India

CERT-In serves in the area of cyber security threats like hacking and ...

ITI Limited widening its focus area

ITI Limited is a public sector undertaking company, has manufacturing ...

Leading company into fertilizers in the country 

NFL is a dynamic organization committed to serve the farming community...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : IBM India Pvt. Ltd.

One of the world’s oldest and largest technology companies, IBM is credited ...

Most Trusted Brands 2023 : Amazon Web Services (AWS)  

As the world’s most comprehensive and broadly adopted cloud, AWS offers over...

Most Trusted Brands 2023 : AMD India Pvt. Ltd.

Ushering in the exascale era, AMD powers the world’s most powerful supercomp...

 Value-Added Distribution  Value-Added Distribution

M. TECH SOLUTIONS (I) PVT. LTD.

M.Tech is a leading cyber security and network performance solutions ...

TECHNOBIND SOLUTIONS PVT. LTD.

TechnoBind’s business model is focused on identifying and partnering...

SATCOM INFOTECH PVT. LTD.

Satcom Infotech Pvt. Ltd is a distribution houses in security in India...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

Impacts of AI on cybersecurity

Impacts of AI on cybersecurity

Eset reports - India recorded the 6th highest Android threat detection globally

Eset reports - India recorded the 6th highest Android threat detection globally

HCLTech launches suite of technology solutions for 5G and beyond

HCLTech launches suite of technology solutions for 5G and beyond

Apple iPhone entering the market with aggressive pricing strategy

Apple iPhone entering the market with aggressive pricing strategy

 UNICORNS REVOLUTIONISING Placeholder image

A&A DUKAAN FINANCIAL SERVICES PRIVATE LIMITED

A&A DUKAAN FINANCIAL SERVICES PRIVATE LIMITED

IndiaIdeas.com Limited

IndiaIdeas.com Limited

ATHER ENERGY PRIVATE LIMITED

ATHER ENERGY PRIVATE LIMITED

MarketXpander Services Private Limited

MarketXpander Services Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW