Ars Technica

Oracle Database suffers from "stealth password cracking vulnerability"

Oracle engineers have corrected the problem in version Oracle Database 12, but they have no plans to fix it in version 11.1 Click to expand... That's a bit troubling. Between the results of their suit ...
Threat Post

Flaw in Oracle Logon Protocol Leads to Easy Password Cracking

There is a serious vulnerability in the authentication protocol used by some Oracle databases, a flaw that could enable a remote attacker to brute-force a token provided by the server prior to ...