Via Steve Eichert I came across an article about database security. It's based on security flaws that have been reported over the years by external security researchers. Only flaws affecting the database servers itself have been considered, so Oracle Application Server has not been included for example. The conclusion is clear
The conclusion is clear – if security robustness and a high degree of assurance are concerns when looking to purchase database server software – given these results one should not be looking at Oracle as a serious contender.
When you look at the graphs, Oracle was pretty secure in the past, but since 2005 the number of security flaws has increased immensely. When we look at the previous SQL Server versions, less security flaws were reported over the years. When we look at SQL Server 2005, it hasn't had a single security flaw reported since launch.
Usualy Oracle known as the most secure database since decade but this truth is now changed in dramatic
Could it be true? A research shows that there were no security flaw fixes in SQL 2005 since its release
Oracle still sucks...
http://searchoracle.techtarget.com/originalContent/0,289142,sid41_gci1255866,00.html