British Bug Hunter Finds 34 Flaws in Oracle Apps.

This article reports that Oracle Corp.'s effort to portray itself as a vendor of unbreakable technology received a setback when a British bug hunter disclosed that he had found 34 security vulnerabilities in the database vendor's products in the U.S. The flaws include several that could allow malicious attackers to gain complete administrative control of compromised database servers. They include buffer overflows, SQL injection issues, and a whole range of other minor issues. Some of the flaws can be exploited without a user ID and password, while others require them.