Once again, privative software, all-powerful enterprise made an absolute fool because a serious security bug. Last summer was Cisco, they sent employees to the DEF CON 13 to tear documentation about a bug in their routers OS. This week is Oracle. They put the blame against the security researcher that exposed in a Black Hat con details about a flaw that Oracle tried to fix with the latest patch but they couldn’t do it. Experts criticize Oracle’s attitude front this and every flaws when discovered.
“What David Litchfield has done is put our customers at risk.”, Oracle said.
The risk is not to uncover bugs. In fact, the real risk is not informing to the customers that pay & use their product.