MAHWAH, N.J., May 1 -- Radware (NASDAQ:RDWR), the leading global provider of integrated application delivery solutions for business-smart networking, today announced the immediate availability of protections against recent Oracle application vulnerabilities.
The new attack signatures are added to the existing protection set available with Radware DefensePro for safeguarding against SQL Injection attacks, various buffer overflow and command execution attacks that may lead to full system compromise.
Radware DefensePro provides protection against the following disclosed Oracle application vulnerabilities:
RWID 7011 - The APPLSYS.FND_DM_NODES package in Oracle E-Business Suite does not check for valid sessions, which allows remote attackers to delete arbitrary nodes. This vulnerability affects Oracle E-Business Suite Release 11i 11.5.10 -11.5.10CU2 platform as well as Microsoft Windows XP/2000/2003 and other variety of platforms.
RWID 7012 - Oracle Data Control ORADC ActiveX Control Code Execution, this vulnerability affects a Microsoft Windows XP/2000/2003 platform.
RWID 7013 - Oracle Database SYS.KUPW-WORKER Package MAIN Procedure SQL, this vulnerability affects Oracle Database Server 10g 10.1.0.5 platform and priors.
Radware (NASDAQ:RDWR), the global leader in integrated application delivery solutions, assures the full availability, maximum performance, and complete security of business-critical applications for more than 5,000 enterprises and carriers worldwide. With APSolute(TM), Radware's comprehensive and award-winning suite of intelligent front end, access, and security products, companies in every industry can drive business productivity, improve profitability, and reduce IT operating and infrastructure costs by making their networks "business smart". For more information, please visit www.radware.com.
Web site: www.radware.com/