Third Brigade’s Host Intrusion Prevention System Stops Attacks That Could Exploit Recent Oracle Security Vulnerabilities

Share Article

Vulnerabilities exist in a broad range of mission critical applications.

Third Brigade, Inc. ( today announced that customers that have deployed Deep Security, its advanced Host Intrusion Prevention System (HIPS) are protected from attacks that could exploit multiple, recent Oracle software vulnerabilities.

On January 17th, 2006, Oracle released “Critical Patch Update – January 2006” as part of its periodic, security patch update cycle. This update addressed more than 80 vulnerabilities in different Oracle products and components. Many of these vulnerabilities can be exploited to gain knowledge of certain information, overwrite arbitrary files, conduct SQL injection attacks, and possible remote code execution. In addition to these vulnerabilities, a zero-day vulnerability was discovered January 25th, affecting Oracle PLSQL Gateway (a component of iAS, Oracle Application Server and the Oracle HTTP Server).

Third Brigade has issued a security update for its customers, which mitigates the risk of exploits to these vulnerabilities over the network.

“Although the spotlight for software vulnerabilities tends to focus on Microsoft, vulnerabilities in mission-critical databases and applications, such as Oracle’s, as well as custom web applications, also present tremendous risk for enterprises that are not properly protected,” said Brian O’Higgins, Chief Technology Officer of Third Brigade. “Third Brigade’s host-based intrusion prevention system provides the necessary proactive defense to protect critical vulnerabilities, whether patches are available or not.”

For details about the Oracle “Critical Patch Update – January 2006” please visit:

Details of the January 25th vulnerability affecting Oracle PLSQL Gateway, are available at:

About Third Brigade

Third Brigade provides Host Intrusion Prevention Systems (HIPS) to health care, government, telecommunications, financial services and other organizations that need to implement security best practices as part of a defense-in-depth strategy. Third Brigade Deep Security gives organizations greater control of their business by stopping attacks before they impact hosts, helping ensure compliance with industry and government regulations, and corporate policies, and by maximizing the performance of an organization’s people, processes and hosts. Unlike others, Third Brigade provides an innovative approach, a positive security model, proactive defense, and a powerful administrative platform.

For more information, contact:

Kathryn Schwab

Media and Analyst Relations

Third Brigade

(T) 613-599-4505 x3001

(M) 613-858-4407

# # #

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Kathryn Schwab
Visit website