Researchers warn of unpatched vulnerability in Oracle WebLogic Server

Several security companies have detected scans looking for Oracle WebLogic servers vulnerable to a flaw that hasn’t yet been patched. The vulnerability is a deserialization bug that can lead to remote code execution. It’s located in a specific package called wls9_async_response that’s not included by default in all Weblogic server builds. Oracle hasn’t publicly confirmed the issue and it’s not clear if the company plans to issue an out-of-band fix for this flaw.”]

Source: https://www.csoonline.com/article/3391402/researchers-warn-of-unpatched-vulnerability-in-oracle-weblogic-server.html

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text