Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

HTTP Options Method security vulnerability associated with Java.exe process

4072794Oct 29 2019

I am getting the HTTP Options Method security vulnerability on a Windows 2012r2 server that has JAVA 8SE installed. It is not a Web Server. I have tracked down this vulnerability to a PID associated with the java.exe process. How can I resolve this vulnerability with regards to the java.exe process?

Anatoly Alymov

I test this code on old version dll. Dll v12.1.22 - work correctly.

On dll v12.1.2400 and later - error.

Viacheslav Andzhich

Hi Anatoly,

Have you tried creating a synonym to avoid dots in the table name?

Something like:

create synonym remote_dual for dual@test.test.test;

select 1 id from remote_dual;

Thank you

Anatoly Alymov

I did so. Rename the dblink did not, as it is used in many packages

1 - 3

Added on Oct 29 2019

#other-security-apis-tools-and-issues

0 comments

348 views

Java Security

HTTP Options Method security vulnerability associated with Java.exe process

Comments

Post Details