db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From dulanja mallikarachchi <dulanjamadhusan...@gmail.com>
Subject Security vulnerability in IJ tool - Apache Derby
Date Wed, 03 Aug 2016 13:16:31 GMT
Hi All,

When a database is created, two files are created inside "log" and "seg0"
folders. These files can be replaced with other files. Thus database is
open to vulnerabilities.

If we can restrict access to the above mentioned folders, we can get rid of
this vulnerability.

Thank you.

View raw message