Oracle Corporation Affected

Notified:  August 27, 2001 Updated: November 17, 2001

Status

Affected

Vendor Statement

"The information that you have posted ... is correct. Oracle has proposed the workaround to mitigate the vulnerability as described."

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.