Go to Intelligence page Intelligence
Go to Investing page Investing
Go to Innovations page Innovations
Go to Impact page Impact
Go to Two Takes page Two Takes
Go to Two Takes page
Go to Intelligence page Intelligence
Go to Investing page Investing
Go to Innovations page Innovations
Go to Impact page Impact
Two Takes View TECHi Stance

Researchers expose vulnerabilities in Oracle’s Java Cloud Service

TECHi's Author Michio Hasai
Opposing Author Arstechnica Read Source Article
Last Updated
Arstechnica
Arstechnica View all Arstechnica Two Takes by TECHi Read the original story Published April 3, 2014
TECHi's Take
Michio Hasai
Michio Hasai
  • Words 74
  • Estimated Read 1 min

A security researcher has published technical details and attack code for dozens of security flaws claimed to affect Oracle’s Java Cloud Service, including some that could allow an attacker to remotely attack apps hosted in its data centers. Security Explorations, a Poland-based company headed up by Java security specialist Adam Gowdiak, has spilled the beans on 30 flaws it says affect customers of Oracle’s Java Cloud at its US and EMEA region datacentres. 

Arstechnica

Arstechnica

  • Words 109
  • Estimated Read 1 min
Read Article

Researchers have released technical details and attack code for 30 security issues affecting Oracle’s Java Cloud Service. Some of the issues make it possible for attackers to read or modify users’ sensitive data or to execute malicious code, the researchers warned. Poland-based Security Explorations typically withholds such public airings until after any vulnerabilities have been fixed to prevent them from being exploited maliciously. The researchers broke from that tradition this week after Oracle representatives failed to resolve issues including bypasses of the Java security sandbox, bypasses of Java whitelisting rules, the use of shared WebLogic server administrator passwords, and the availability of plain-text use passwords stored in some systems.

Source

NOTE: TECHi Two-Takes are the stories we have chosen from the web along with a little bit of our opinion in a paragraph. Please check the original story in the Source Button below.

Balanced Perspective

TECHi weighs both sides before reaching a conclusion.

TECHi’s editorial take above outlines the reasoning that supports this position.

More Two Takes from Arstechnica

Apple won’t be announcing its television service next week after all
Apple won’t be announcing its television service next week after all
Brian
Brian

Those of you who have been anticipating the announcement of Apple's long-rumored subscription television service should prepare yourselves for disappointment.…

Kyocera is being sued by Microsoft for infringing on Android patents
Kyocera is being sued by Microsoft for infringing on Android patents
Scarlett
Scarlett

Despite being a direct competitor in the mobile market, Microsoft actually owns quite a few Android patents and isn't afraid…

Maybe default encryption for Android wasn’t such a good idea
Maybe default encryption for Android wasn’t such a good idea
Carl
Carl

While Android has supported disk encryption for a while now, Android 5.0 is the only version that implements it by…

The FCC has approved America’s strongest-ever net neutrality rules
The FCC has approved America’s strongest-ever net neutrality rules
Carl
Carl

The strongest net neutrality rules that the United States has ever seen were approved by the FCC in a highly-anticipated…