65 vulnerabilities have been reported for a product that was billed as unbreakable


According to the SANS diary a popular database vendor announced 65 security vulnerabilites yesterday. That seems a great deal for a product that was billed as being “unbreakable”.


Let’s be clear – all software (of any size) has vulnerabilities – accepting this and being as transparent as possible about remediation steps is important IMHO.


It’s very frustrating that in this case it’s necessary to possess sign-in credentials to be able to find out any meaningful details of the vulnerabilites in question.


Apparently a support contact (identifier) of some kind is required to be able to even view any kind of information pertaining to the security exposure.


There are some further details available @ the excellent third party vulnerability tracking site Secunia


To browse the technical details of the security vulnerabilites reported for Microsoft products look here 

Comments (2)

  1. Nik says:

    Agreed in spades… The choice to advertise it as “unbreakable” was like waving a red rag at a bull. It would be entertaining to graph the release of exploits before and after the “unbreakable” campaign.

    There’s a very good blog from Pete Finnigan at http://www.petefinnigan.com/weblog/entries/ that has regular updates on Oracle security issues.

  2. Steve Lamb says:

    Nik> Thanks – I’ll take a look @ the site.