I know. Its hard (even today) to get an planned downtime for your database. But when you tell your boss what this vulnerability can do, trust me, you’ll get your window.

Some days ago, I receive the CVE-2018-3110 details. First of all, you know what a CVE is?

CVE comes from Common Vulnerabilities and Exposures, so its not a “Oracle only” space. Every product (from middleware, processors, linux, switches to routers) have a dictionary of vulnerabilities.

So, what this CVE states?

So, what?? 9.9 of 10? Affected plataforms are windows, linux, unix (so all plataforms, right?)

I cant make a how to about exploiting this..but check the image below and make some tests ( on your lab, please)

Its time to patch my friends.

See you around.