KristenNicole writes "Some serious flaws have been identified in older Oracle databases that could lead to data and security breach. As discovered in Oracle Database 11g Releases 1 and 2, the flaw leaves databases open by sending the session key to the client before authentication is fully completed, this leaves the session open to enabling an attacker to guess the password. The Register has reported on this issue and it looks like a bit of a doozy.
Read full article here: http://siliconangle.com/blog/2012/09/26/serious-flaws-detected-in-oracle-database-may-lead-to-data-leaks/#"
Link to Original Source