HackProofing Oracle eBusiness Suite

by David Litchfield
Sept. 15, 2017 1 comment www.blackhat.com belen_caty Pen Testing & Audits

A recent security review by David Litchfield of Oracle's eBusiness Suite (fully patched) revealed it is vulnerable to a number of (unauthenticated) remote code execution flaws, a slew of SQL injection vulnerabilities and Cross Site Scripting bugs. Used by large corporations across the globe the question becomes how does one secure this product given its weaknesses. This talk will examine those weakness with demonstration exploits then look at how one can protect their systems against these attacks.


Steven Ulm 8 months, 1 week ago

When you are one of the leaders in Integrated Cloud Applications and Platform Services you definitely need to take security as a top priority...