/?pid=oracle-issues-emergency-update-20909

Updated:05:39 PM EDT Jul 14


this is ggmania.com subsite Oracle issues emergency update - TechAmok

Oracle issues emergency update - [security]
05:09 PM EDT - Jun,19 2019 - post a comment

Oracle on Tuesday published an out-of-band update patching a critical code-execution vulnerability in its WebLogic server after researchers warned that the flaw was being actively exploited in the wild.

The vulnerability, tracked as CVE-2019-2729, allows an attacker to run malicious code on the WebLogic server without any need for authentication. That capability earned the vulnerability a Common Vulnerability Scoring System score of 9.8 out of 10. The vulnerability is a deserialization attack targeting two Web applications that WebLogic appears to expose to the Internet by default - wls9_async_response and wls-wsat.war.

The flaw in Oracle's WebLogic Java application servers came to light as a zero-day four days ago when it was reported by security firm KnownSec404.

This isn't the first, or even second, deserialization attack that has been used to target these services. The wls-wsat component was successfully exploited in a similar fashion in 2017, and KnownSec404 reported another one in April. The 2017 vulnerability was largely used to install bitcoin miners; April's vulnerability was exploited in cryptojacking and ransomware campaigns. Oracle's current out-of-band patch and advisory notice has not officially acknowledged the active exploitation of CVE-2019-2729, but it does mark the vulnerability as high risk and advises customers to apply the out-of-band patch as soon as possible.

Short overview of recent news articles

Google Is Selling Fake Products - WAN Show July 11, 2025 (Jul,14 2025 )

Hacked by playing Call of Duty WW2 on Gamepass? (Jul,12 2025 )

2025 VW Golf GTE // TOP SPEED REVIEW on AUTOBAHN (Jul,12 2025 )

NEW Audi RS3 v cheapest used RS3: DRAG RACE (Jul,11 2025 )

A critical security vulnerability in Microsoft Remote Desktop Client (Jul,10 2025 )

Samsung Z Fold/Flip 7 Impressions: Major Upgrades! (Jul,10 2025 )

Gmail's latest feature helps you get rid of those pesky emails from (Jul,08 2025 )

I'm an idiot and still made top 5... here's how (Jul,06 2025 )

The Fantastic Four: First Steps - Official 'Lift Off' Teaser (Jul,05 2025 )

Samsung Galaxy Z Fold 7 - Hands on Look (Jul,04 2025 )

RTX 5070 Ti vs RTX 5080 - Is 5080 Gaming Laptop Worth More $$$? (Jul,04 2025 )

FIRST DRIVE: Praga Bohema - Crazy Hypercar Driven! (Jul,04 2025 )

Ballerina - Exclusive John Wick Deleted Scene (2025) Keanu Reeves, (Jul,03 2025 )

Call of Duty: WWII - Remote Code Execution Warning (PC Game Pass) (Jul,03 2025 )

1014HP Lamborghini REVUELTO 369KMH TOP SPEED POV on AUTOBAHN (Jul,02 2025 )

Nvidia Drivers (V 576.80 vs V 576.88) - Test In 12 Games - RTX 4060 (Jul,01 2025 )

AMD Adrenalin 25.6.3 Driver Is Available (Jun,30 2025 )

NVIDIA GeForce RTX 5080 SUPER Could Feature 24 GB Memory, Increased (Jun,30 2025 )

Guess What Nvidia Did THIS Time (Jun,29 2025 )

The 10 Best Dinosaur Movies of All Time (Jun,28 2025 )

Microsoft officially confirms that Windows 11 version 25H2 is coming (Jun,28 2025 )

Eddington - Official Trailer 2 (2025) Joaquin Phoenix, Pedro Pascal (Jun,26 2025 )

Microsoft Say System Restore Points Now Expire After 60 Days (Jun,25 2025 )

Facebook, Netflix, and Microsoft Websites Hijacked to Insert Fake (Jun,25 2025 )

I put a $3000 GPU in my Average PC... It Was a Mistake (Jun,24 2025 )

Best External SSD for Mac 2025: After Weeks of Testing, Here's What (Jun,24 2025 )

Mostly boob jokes this week (RTX 5090 DD) - Tech News June 22 (Jun,23 2025 )

Superman - Official 30 Second Spot (2025) (Jun,21 2025 )

'The fastest road car I've ever been in!' - Ferrari F80 track day (Jun,21 2025 )

CPU SCAM: AMD Ryzen 9800X3D Counterfeits & Fraud (Jun,20 2025 )

28 Years Later Review (Jun,19 2025 )

HW News - NVIDIA "N1x" CPU Leak, ASUS Xbox ROG Ally, More Intel (Jun,18 2025 )

NVIDIA GeForce 576.80 WHQL Driver (Jun,17 2025 )

The Fantastic Four: First Steps - Official 'H.E.R.B.I.E.' Teaser (Jun,16 2025 )

Huawei Maextro S800 First Look - A True BMW & Mercedes Killer? (Jun,15 2025 )

Upgrade Windows 10 to Windows 10 LTSC Without Losing Data (Jun,14 2025 )

Squid Game: Season 3 - Final Games Trailer (Jun,14 2025 )

WWDC 2025: Everything Revealed in 9 Minutes (Jun,11 2025 )

Microsoft June 2025 Patch Tuesday fixes exploited zero-day, 66 flaws (Jun,10 2025 )

This Malware BREAKS WINDOWS! (Jun,10 2025 )

Reset Forgotten Password without Any Software, without USB drive in (Jun,10 2025 )

Microsoft Will Block Unsupported Hardware For Windows 11 (Jun,08 2025 )

Memory Wars! Apple vs Ryzen - Is Unified Memory Faster than Shared (Jun,08 2025 )

Predator: Killer of Killers - Exclusive Clip (2025) (Jun,06 2025 )

Enable Deep Effect on Samsung One Ui 7 (Jun,06 2025 )

Google Kills Off PayPal in Google Wallet (Jun,05 2025 )

Samsung's Next Flagship Foldable Will be Ultra (Jun,05 2025 )

Over 40 Malicious Chrome Extensions Mimic Popular Brands to Steal (Jun,05 2025 )

The Witcher IV - Unreal Engine 5 tech demo (Jun,03 2025 )

Nintendo Switch 2 Welcome Tour trailer (Jun,02 2025 )

>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs