Posted by Shatter on May 02
TeamSHATTER Security Advisory
April 21, 2011
Oracle Database Server version 10gR1, 10gR2, 11gR1 and 11gR2 (on Windows platform)
This vulnerability was discovered and researched by Esteban Martinez Fayo of Application Security Inc.
Sending a specially crafted network packet to an Oracle Database during the connection before the user authentication
is performed it…