Researcher misinterprets Oracle advisory, discloses unpatched database vulnerability

Instructions on how to exploit an unpatched Oracle Database Server vulnerability in order to intercept the information exchanged between clients and databases were published by a security researcher who erroneously thought that the company had patched the flaw. Oracle's April 2012 Critical Patch Update (CPU) advisory, published on April 17, credited security researcher Joxean Koret for a vulnerability he reported through cyber intelligence firm iSight Partners.

allen county jail buprenorphine cats sacramento sheriff inmate