Credit Card Numbers Are Visible In Dm_fusa (and Possibly CM) Memory Dumps
(Doc ID 2598671.1)
Last updated on OCTOBER 16, 2019
Applies to:
Oracle Communications Billing and Revenue Management - Version 7.5.0.21.0 and laterInformation in this document applies to any platform.
Goal
Is the access to credit card numbers from the memory dumps considered as a Payment Card Industry (PCI) violation?
e.g. Using various utilities and (non-root) capabilities to analyze the memory and stack of running dm_fusa processes are able to see credit card #s - for online auth/verify requests.
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Is the access to credit card numbers from the memory dumps considered as a Payment Card Industry (PCI) violation? |
Solution |
References |