Comments
yourfanat wrote: I am using another tool for Oracle developers - dbForge Studio for Oracle. This IDE has lots of usefull features, among them: oracle designer, code competion and formatter, query builder, debugger, profiler, erxport/import, reports and many others. The latest version supports Oracle 12C. More information here.
Cloud Expo on Google News
SYS-CON.TV
Cloud Expo & Virtualization 2009 East
PLATINUM SPONSORS:
IBM
Smarter Business Solutions Through Dynamic Infrastructure
IBM
Smarter Insights: How the CIO Becomes a Hero Again
Microsoft
Windows Azure
GOLD SPONSORS:
Appsense
Why VDI?
CA
Maximizing the Business Value of Virtualization in Enterprise and Cloud Computing Environments
ExactTarget
Messaging in the Cloud - Email, SMS and Voice
Freedom OSS
Stairway to the Cloud
Sun
Sun's Incubation Platform: Helping Startups Serve the Enterprise
POWER PANELS:
Cloud Computing & Enterprise IT: Cost & Operational Benefits
How and Why is a Flexible IT Infrastructure the Key To the Future?
Click For 2008 West
Event Webcasts
Flaw in Microsoft VM JDBC Classes Could Allow Code Execution
Flaw in Microsoft VM JDBC Classes Could Allow Code Execution

(September 23, 2002) – In a recent security bulletin, Microsoft Corp. advised Windows users to install a free patch to address three vulnerabilities in its virtual machine, the most serious of which could enable an attacker to gain complete control over a user’s system. All builds of the Microsoft VM up to and including build 5.0.3805 are affected by these vulnerabilities, which Microsoft assessed as being “critical” in client systems. Two of the vulnerabilities involve the Java Database Connectivity (JDBC) classes, which provide features that allow Java applications to connect to and use data from a wide variety of data sources, ranging from flat files to SQL Server databases. These flaws could enable an attacker to provide data that would have the effect of running code in the security context of the user, or might enable an attacker to load and execute any DLL on the user’s system. The third vulnerability involves a class that provides support for the use of XML by Java applications. Among the functions that could be misused through this vulnerability are ones that would enable an applet to take virtually any desired action on the user’s system. The flaws, and instructions for installing the patches, are detailed at www.microsoft.com/technet/security .

About Java News Desk
JDJ News Desk monitors the world of Java to present IT professionals with updates on technology advances, business trends, new products and standards in the Java and i-technology space.

In order to post a comment you need to be registered and logged in.

Register | Sign-in

Reader Feedback: Page 1 of 1

While the Administration spends energy chasing Oregon around for it's assisted suicide laws, Microsoft continues to be allowed to leave gapping holes in its operating system and other software. As the largest software developer in the world, these security problems leave us Users more and more vulnerable to electronic eavsdropping and terrorist attacks. Rather than spend money spying on innocent people, Ashcroft should be spending time in court forcing Microsoft to cleanup their security act.

Who could have guessed Microsoft would have a security breech in their JVM. I guess they need to match this flaw up with the thousands in their OS.

Can't they get anything right?


Your Feedback
Ray Maddux wrote: While the Administration spends energy chasing Oregon around for it's assisted suicide laws, Microsoft continues to be allowed to leave gapping holes in its operating system and other software. As the largest software developer in the world, these security problems leave us Users more and more vulnerable to electronic eavsdropping and terrorist attacks. Rather than spend money spying on innocent people, Ashcroft should be spending time in court forcing Microsoft to cleanup their security act.
Marcus Williams wrote: Who could have guessed Microsoft would have a security breech in their JVM. I guess they need to match this flaw up with the thousands in their OS. Can't they get anything right?
Latest Cloud Developer Stories
CI/CD is conceptually straightforward, yet often technically intricate to implement since it requires time and opportunities to develop intimate understanding on not only DevOps processes and operations, but likely product integrations with multiple platforms. This session intend...
The now mainstream platform changes stemming from the first Internet boom brought many changes but didn’t really change the basic relationship between servers and the applications running on them. In fact, that was sort of the point. In his session at 18th Cloud Expo, Gordon Ha...
CloudEXPO New York 2018, colocated with DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to...
Bill Schmarzo, Tech Chair of "Big Data | Analytics" of upcoming CloudEXPO | DXWorldEXPO New York (November 12-13, 2018, New York City) today announced the outline and schedule of the track. "The track has been designed in experience/degree order," said Schmarzo. "So, that folks w...
For years the world's most security-focused and distributed organizations - banks, military/defense agencies, global enterprises - have sought to adopt cloud technologies that can reduce costs, future-proof against data growth, and improve user productivity. The challenges of cl...
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
Click to Add our RSS Feeds to the Service of Your Choice:
Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
Publish Your Article! Please send it to editorial(at)sys-con.com!

Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021



SYS-CON Featured Whitepapers
ADS BY GOOGLE