Oracle Software Audit

Oracle vs. Mars Lawsuit: What Was It About?

Oracle vs. Mars Lawsuit

Oracle vs. Mars Licensing Dispute: What CIOs Should Know

The Oracle vs. Mars conflict is a cautionary tale of a software audit gone awry between Oracle Corporation and Mars, Inc., the global confectionery and pet care company.

In this dispute, Oracleโ€™s License Management Services (LMS) aggressively audited Marsโ€™ use of Oracle software, particularly in virtualized VMware environments, leading to a high-stakes standoff.

Mars pushed back against Oracleโ€™s expansive interpretation of its licensing terms โ€“ an Oracle vs. Mars showdown that remains one of the only public legal fights over Oracleโ€™s audit tactics.

Ultimately, the case was settled out of court, but it revealed the lengths to which Oracle might go during audits and exposed important lessons for CIOs.

This article provides a factual overview of the licensing dispute, analyzes Oracleโ€™s audit approach, and offers guidance to enterprises on managing Oracle software licenses and audits.

CIOs and sourcing professionals will gain insight into how the Oracle vs. Mars situation unfolded, what it means for their organizations, and how to mitigate similar risks.

Background: Inside the Oracle vs. Mars Conflict

Oracle vs. Mars began as a routine license review in 2014 and quickly escalated into a fierce dispute. Mars Inc., an Oracle customer under a long-standing 1993 license agreement, was subjected to an Oracle LMS audit focused on Marsโ€™ use of Oracle databases and software.

Oracleโ€™s team demanded that Mars run Oracleโ€™s audit scripts and provide detailed data on all servers in Marsโ€™ IT environment โ€“ including servers where no Oracle software was installed. The flashpoint was Marsโ€™ use of VMware virtualization (vSphere 5.x), which Oracle claimed could enable Oracle programs to run on any connected server.

Mars provided Oracle with over 233,000 pages of documentation over several months to demonstrate compliance.

Despite Marsโ€™ cooperation with information on actual Oracle usage, Oracle insisted on data beyond the agreed-upon audit scope, such as details of every VMware server cluster, arguing that even systems not currently running Oracle might need licensing if Oracle software could potentially migrate to them.

Tensions escalated when Oracle issued a formal notice, alleging that Mars was in material breach of the license agreement for failing to fully comply with the audit. Oracle threatened to terminate Marsโ€™ Oracle licenses and support within 30 days if Mars did not acquiesce to its information demands.

Mars disagreed vehemently, maintaining that it had honored the contractโ€™s audit clause (which allowed audits of use of Oracle programs) and that Oracle was overreaching.

By October 2015, with Oracle refusing to withdraw its termination threat, Mars took the extraordinary step of filing a lawsuit in the Superior Court of California (San Francisco).

In this Oracle vs. Mars legal action, Mars sought a court order to restrain Oracleโ€™s audit conduct within the contractโ€™s bounds and to prevent Oracle from canceling Marsโ€™ licenses and support.

It was a bold move โ€“ essentially turning the tables and challenging Oracleโ€™s audit practices in court.

Just weeks later, in December 2015, Mars and Oracle agreed to halt the litigation. Mars withdrew its complaint after a private settlement was reached, meaning the case never went to trial.

The settlement details remain confidential, but the public court filings from Oracle vs. Mars shed unprecedented light on Oracleโ€™s audit methods.

Those filings confirmed that Oracleโ€™s audit push was largely driven by its virtualization licensing stance โ€“ a position not explicitly written in Marsโ€™ contract. In the end, Mars averted the immediate risk of losing its licenses, and Oracle avoided a courtroom judgment on its tactics.

However, the conflict sent a clear message across the industry about the aggressive nature of Oracle audits and the importance of understanding oneโ€™s contractual rights.

Oracleโ€™s Audit Tactics Under Scrutiny

The Oracle vs. Mars saga revealed several audit tactics that Oracle has been reported to employ, raising concerns for all Oracle customers.

Notably, Oracleโ€™s LMS team treated the Mars engagement not as a neutral โ€œauditโ€ but as a far-reaching probe to maximize potential licensing revenue:

  • Expansive Audit Scope: Oracle auditors demanded information well beyond Marsโ€™ actual use of Oracle programs. They interpreted โ€œinstalled or runningโ€ software to include any environment where Oracle could run (such as every VMware host in a cluster), effectively broadening the scope without a contractual basis. This tactic pressured Mars to consider licensing servers that only hypothetically might run Oracle software in the future.
  • Script Execution and Data Dumps: Oracle requested that Mars run Oracle-provided scripts on its systems and hand over detailed configuration data. These scripts often reveal all deployments and even the presence of VMware across infrastructure. Mars, like many enterprises, was wary of running unknown scripts in production and concerned about divulging non-Oracle environment details. Oracleโ€™s insistence on this step is a common audit practice meant to uncover any deployments โ€“ even those indirectly related to Oracleโ€™s products.
  • โ€œFishing Expeditionโ€ Demands: During the audit, Oracle repeatedly shifted requests and moved the goalposts. Mars complied with reasonable requests regarding Oracle usage, but Oracle continued to ask for more (e.g., data from unrelated servers and even information about Mars personnel who didnโ€™t use Oracle software). Such tactics suggest Oracle was looking for any leverage or technicality to claim non-compliance.
  • Breach Notices and Threats: Perhaps the most striking tactic was Oracle issuing formal breach notices during the audit. By declaring Mars in breach and threatening license termination, Oracle applied maximum pressure. This approach is exceedingly aggressive โ€“ audits are normally cooperative processes, but here Oracle used the threat of termination as a negotiation tool. The public filings showed that Oracle sent Mars letters warning of termination if Mars didnโ€™t meet demands, despite Marsโ€™ substantial cooperation. For many organizations, the mere threat of losing access to critical Oracle systems would force a quick capitulation to Oracleโ€™s terms.
  • Avoiding Judicial Scrutiny: Industry experts observed that Oracle appeared to be keen on avoiding having its audit practices tested in court. In the Mars case, Oracle chose to settle rather than defend its expansive interpretation of license terms before a judge. This reflects a broader tactic: Oracle often prefers confidential settlements, allowing it to enforce contentious licensing positions one-on-one with customers instead of risking a legal precedent that might curb its audit strategies.

For CIOs, these tactics underscore the importance of preparation and vigilance. Oracle audits can be adversarial and disruptive.

The Oracle vs. Mars case highlighted how an audit can escalate into a protracted conflict if expectations and rights are not clearly defined.

Marsโ€™ experience โ€“ from deluging Oracle with hundreds of thousands of documents to standing firm against unfounded claims โ€“ is a study in the extremes of vendor auditing behavior.

It highlights that Oracle may sometimes rely on โ€œaudit by intimidationโ€ โ€“ leveraging complexity and fear of termination to drive license sales or settlements.

Key Lessons for Enterprises Using Oracle

The Oracle vs. Mars dispute offers critical lessons for any enterprise that relies on Oracle software:

  • Know Your Contracts: CIOs and sourcing teams must thoroughly understand Oracle license agreements, particularly clauses related to audits, usage definitions, and termination. Mars successfully argued that Oracleโ€™s rights were limited to auditing actual use of its software. Customers should ensure they know exactly what the vendor can and cannot demand during an audit.
  • Document and Limit Audit Scope: Always ensure that audit activities remain within the contractual scope. Mars resisted Oracleโ€™s attempts to expand the audit to non-Oracle environments. Enterprises should carefully document the information provided and push back on requests that exceed the contract language (e.g., details of infrastructure not running Oracle).
  • Virtualization is a Licensing Minefield: Oracleโ€™s licensing policies regarding virtualization (such as VMware or cloud) are notoriously complex and often not explicitly stated in contracts. Mars was caught in a gray area โ€“ Oracleโ€™s unofficial stance was that any server connected via VMware could count as โ€œinstalled.โ€ To avoid this, companies should seek clarity in contracts or amendments about virtualized environments, or consider architecture and segmentation to contain Oracle workloads.
  • Donโ€™t Assume Oracleโ€™s Claims are Law: Just because Oracle asserts a compliance issue doesnโ€™t mean itโ€™s contractually true. Mars showed that customers can challenge Oracleโ€™s interpretations. If Oracle cites a policy (like a partitioning policy or a new definition of โ€œuseโ€) that isnโ€™t in the contract, it may not be enforceable. Itโ€™s crucial to differentiate Oracleโ€™s contractual terms from its policies or sales tactics.
  • Engage Experts Early: Mars enlisted outside counsel and a licensing advisory firm to help navigate and counter Oracleโ€™s audit. Likewise, enterprises should involve their legal team and independent Oracle licensing experts as soon as they receive an audit notice. Experienced advisors can identify overreach, ensure proper responses, and negotiate from a position of strength.
  • Prepare for Audit Disruption: Oracle audits can consume significant time and resources โ€“ Mars had to dedicate internal staff and produce an enormous volume of data. Organizations should have an internal audit-response plan, which includes designating knowledgeable owners for Oracle assets, maintaining up-to-date deployment records, and being prepared to gather evidence of compliance. This preparation can shorten the audit and avoid unnecessary scrambling (or inadvertent errors in data provided to Oracle).
  • Consider Your Risk Tolerance: Some companies, upon seeing cases like Oracle vs. Mars, opt for risk-avoidance strategies. This could mean architecting systems to avoid contested setups (for example, isolating Oracle databases on dedicated physical servers rather than a shared VMware cluster) or even negotiating broader license agreements. Marsโ€™ saga shows that fighting an audit is possible, but itโ€™s a major undertaking. Each enterprise should evaluate whether itโ€™s better to negotiate an acceptable licensing deal up front (such as an unlimited license agreement for a fixed fee) versus risking a drawn-out audit battle.

In summary, Oracle vs. Mars teaches enterprises to be proactive rather than passively accepting all audit demands. With knowledge, preparation, and the courage to push back when necessary, customers can manage Oracle audits on fair terms.

Common Contract Pitfalls and Audit Triggers (Table)

Many Oracle audit disputes stem from similar contract pitfalls and scenarios as seen in the Mars case. The table below outlines common triggers and problematic areas in Oracle agreements that CIOs should watch out for:

Contract Pitfall / Audit TriggerDescription and Impact
Virtualization & Soft PartitioningUsing VMware or other hypervisors can trigger Oracle claims that all physical hosts must be licensed, even if Oracle software runs on only a few. This is not explicitly in standard contracts, but Oracleโ€™s policies treat VMware as โ€œsoft partitioningโ€ not recognized for license reduction. Enterprises virtualizing Oracle must be cautious and clarify terms to avoid surprise compliance issues.
Undefined โ€œInstalledโ€ or โ€œUseโ€ TermsAmbiguities in what counts as software โ€œuseโ€ or โ€œinstallationโ€ can be exploited. Oracle may argue (as in Oracle vs. Mars) that software available on a server equals a licensable installation. If your contract doesnโ€™t precisely define these terms, Oracle might use broad interpretations during audits.
License Metric ChangesOracleโ€™s license metrics (like per-core, NUP, processor definitions) can change or be interpreted strictly. If an environment changes (new CPUs, cores added, hyper-threading, etc.), you might unknowingly exceed entitlements. Audit triggers include suddenly higher core counts or usage of features/options not originally tracked.
Mix of License Types or Legacy ContractsCompanies with multiple Oracle contracts or older agreements (like Marsโ€™ 1993 contract) may face conflicts or gaps. Inconsistent terms across contracts can create confusion that Oracle leverages in audits. Mergers and acquisitions (inheriting Oracle licenses) are especially risky times for triggering an audit due to contract consolidation issues.
Use of Oracle Options or PacksMany Oracle products have optional packs or add-ons (e.g., Database options like Partitioning, or Management Packs) that require separate licenses. Itโ€™s a common pitfall that DBAs enable or use these features without licensing them, leading to audit findings. Oracle auditors will look for any usage of extra features as easy compliance gaps.
Underestimating Audit ClausesSome companies agree to audit clauses that give Oracle broad inspection rights or short response timelines. Not negotiating audit terms (e.g., frequency of audits, advance notice, dispute resolution) can leave you exposed. An onerous audit clause combined with aggressive auditing can quickly become a serious dispute if not managed.

CIOs should review these areas in their Oracle contracts and operational practices. Each of the above pitfalls has been a factor in real audits (including the Oracle vs. Mars case), and addressing them in advance can help reduce audit risk.

Hypothetical Scenario: Avoiding Another โ€œOracle vs. Marsโ€

Imagine Company X, a global manufacturer, which, like Mars, runs Oracle databases on a VMware virtualized cluster.

One day, Company X receives a polite-sounding license review notice from Oracle. Expecting a routine check, Company Xโ€™s IT team begins compiling evidence of their Oracle database licenses and usage.

However, Oracleโ€™s auditors soon ask Company X to deploy scripts across all servers in their data center.

The script reports back not just on Oracle software, but also flags that VMware vSphere is in use.

Oracle then demands a list of every physical server connected to the VMware environment, insisting that even servers with no Oracle products must be counted for licensing due to the potential for VM migration.

Company Xโ€™s CIO and sourcing manager become concerned โ€“ these demands exceed their understanding of the Oracle contract.

Oracle points to a policy document (not part of the contract) and claims a hefty license shortfall, asserting that dozens of unlicensed servers would owe database licenses, back support fees, and penalties.

This amounts to millions of dollars in unexpected liability. Oracle sets a 30-day deadline to โ€œresolveโ€ the findings (essentially, buy more licenses) or face termination of support.

Rather than panic, Company X convenes its response team.

They review the contractโ€™s audit clause, which, just like Marsโ€™, limits audits to use of the programs. Nowhere does it require licensing โ€œavailableโ€ capacity. Company X engages an outside Oracle licensing advisory firm and legal counsel.

Together, they draft a firm reply to Oracle, providing data on actual Oracle installations and usage, but refusing the request for non-Oracle server information that isnโ€™t contractually required. They remind Oracle of the contract language and ask Oracle to explain how their requests align with the signed agreement.

Oracleโ€™s sales team pushes harder, threatening escalation, but Company X stands its ground, prepared to litigate if needed.

Faced with a well-prepared customer, Oracle backs off the most extreme demands, and the two sides negotiate a resolution.

Company X agrees to purchase a few additional licenses to address genuine shortfalls, and Oracle closes the audit without the massive compliance bill originally feared.

In this hypothetical replay of Oracle vs. Mars, Company X avoided a worst-case scenario by understanding its contract, asserting its rights, and utilizing expert assistance.

The story highlights how another enterprise can emerge unscathed from an Oracle audit by applying the lessons learned from the Mars case.

(The example above is fictitious but based on patterns seen in Oracle audits. It shows that while an Oracle audit can become contentious, proactive management and a firm grasp of contractual obligations can protect an enterprise from undue risk.)

Recommendations

To avoid conflicts like Oracle vs. Mars, CIOs and sourcing professionals should consider the following expert tips for managing Oracle audit risk and license terms:

  1. Thoroughly Review Oracle Contracts: Regularly audit your own Oracle agreements. Understand the definitions of terms like โ€œprocessorโ€, โ€œuserโ€, or โ€œinstalledโ€ and ensure they align with your environment. If you find vague language, seek amendments or clarifications before an Oracle auditor does.
  2. Proactively Address Virtualization: If you run Oracle on virtualized infrastructure (VMware, cloud, etc.), engage Oracle (or a third-party expert) to obtain a written clarification of licensing. Consider partitioning strategies (hard partitioning, dedicated hosts) or Oracleโ€™s cloud-approved virtualization if feasible. It may even be worth negotiating a special clause or purchasing an unlimited license agreement to cover virtual environments if that provides cost certainty.
  3. Maintain Robust License Tracking: Implement internal processes or tools to continuously monitor Oracle software deployments and usage. Maintain documentation of where Oracle products are installed, the number of users or processors in use, and the features enabled. This real-time knowledge makes audits far less painful and reduces the chance of surprises.
  4. Train and Communicate: Educate your IT staff on Oracle licensing rules and common pitfalls. Ensure that system administrators are aware, for example, that enabling an unlicensed database option or cloning an Oracle VM to a new host may have compliance implications. A culture of license awareness can prevent accidental non-compliance.
  5. Engage Experts at the First Audit Notice: The moment an Oracle audit notice arrives, involve your contract managers, legal counsel, and possibly external Oracle licensing specialists. Early expert guidance can significantly influence the scope and tone of the audit. It signals to Oracle that you take compliance seriously but wonโ€™t be easily intimidated.
  6. Control the Audit Process: Be cordial and cooperative within contractual limits, while managing the flow of information. For instance, run Oracleโ€™s scripts in a test environment first to verify what data they collect. Only provide the data required by the contract. If Oracle requests meetings, set an agenda and insist on written follow-ups so thereโ€™s a clear record.
  7. Push for a Fair Resolution: If an audit reveals genuine shortfalls, negotiate pragmatically โ€“ perhaps through additional purchases or migrating to newer license models that make more sense. But if findings are based on questionable interpretations, calmly dispute them. Ask Oracle to show where the contract supports their claim. Often, a reasonable settlement can be reached once Oracle sees you are well-prepared to challenge unfounded assertions.
  8. Learn from Peer Experiences: Stay informed through user groups, industry publications, and peers about Oracleโ€™s latest audit tactics. Tactics evolve (for instance, increased audits of Java licensing in recent years). By knowing how Oracle vs. Mars unfolded and keeping up with current trends, youโ€™ll be better positioned to anticipate and manage Oracleโ€™s moves.
  9. Evaluate Your Dependency on Oracle: As a strategic consideration, assess the criticality of Oracle to your operations and whether diversifying or using alternatives could reduce your risk exposure. Oracle audits often target their biggest customers. Some organizations mitigate this by shifting certain workloads away from Oracle or limiting the expansion of Oracle footprints, thus lowering the stakes of any audit showdown.

By following these recommendations, enterprises can create a more balanced dynamic with Oracle.

The goal is to be audit-ready, contractually savvy, and confident in negotiating โ€“ so that even if Oracle audits you aggressively, your company wonโ€™t become the next Oracle vs. Mars headline.

Checklist: 5 Actions to Take

For CIOs and sourcing professionals looking to fortify their Oracle license position immediately, hereโ€™s a concise checklist of five key actions:

  1. Audit Your Oracle Footprint: Inventory all Oracle software deployments, versions, and usage metrics in your organization. Map them against your entitlements (licenses owned) to identify any gaps or ambiguities. This self-audit is your baseline for any future Oracle inquiry.
  2. Review Contract Audit Clauses: Pull out your Oracle master agreements and review the audit clause and related terms. Note how much notice Oracle must give, how audits must be conducted, and what your obligations are. If anything is unclear or overly one-sided, plan to address it in your next negotiation with Oracle.
  3. Establish an Audit Response Plan: Develop an internal protocol for responding to vendor audits. Assign roles โ€“ e.g., who will interface with Oracleโ€™s auditors, who will gather data, who will coordinate legal review. Have template communications ready. Being organized from the start of an audit sets a controlled tone and helps avoid missteps.
  4. Consult Legal and Licensing Advisors: Identify external experts (law firms with software licensing expertise, or Oracle license consultants) and brief them on your Oracle setup now, not when an audit is in full swing. Having advisors who already understand your environment can save precious time if you need rapid advice during an audit.
  5. Engage with Oracle Proactively (Selective): If you foresee major changes, such as a data center move, cloud migration, or a large virtualization project involving Oracle software, consider informing Oracle in advance and discussing licensing requirements. While you should be cautious in what you disclose, proactive engagement on your terms can sometimes preempt audit disputes. For example, negotiating a new agreement or custom terms for a project can give you certainty and avoid a later confrontation.

By ticking off this checklist, youโ€™ll greatly reduce the chances of an Oracle audit surprise. Each action helps ensure that if Oracle comes knocking, youโ€™ll respond from a position of strength and preparedness โ€“ not panic.

FAQ

Q: What was the Oracle vs. Mars dispute about?
A: It was about a software licensing audit. Oracle claimed that Mars had to license servers that might run Oracle software in a VMware virtualized environment, even if those servers werenโ€™t using Oracle software. Mars disagreed, saying Oracleโ€™s demands went beyond the contract. This led Mars to sue Oracle to prevent the threatened termination of its licenses.

Q: Did Oracle threaten to cut off Marsโ€™ software licenses?
A: Yes. During the audit, Oracle issued Mars a breach notice and threatened to terminate Marsโ€™ licenses and support within 30 days if Mars didnโ€™t comply fully with Oracleโ€™s audit demands. This aggressive step is what pushed Mars to file a lawsuit. Such termination threats are rare, and Mars argued that they were unjustified, as Mars believed it was adhering to the contract.

Q: How was the Oracle vs. Mars lawsuit resolved?
A: The case never went to trial. Mars filed suit in October 2015, and by December 2015, Mars and Oracle had reached a private settlement, after which the case was dismissed. The exact terms arenโ€™t public, but the settlement likely meant that Oracle withdrew its termination threat and any immediate compliance claims. Mars got relief in that Oracle scaled back, and Oracle avoided a legal precedent against its audit practices.

Q: What makes the Oracle vs. Mars case significant for other companies?
A: Itโ€™s one of the only public examples of a customer taking Oracle to court over an audit. It revealed Oracleโ€™s hardball audit tactics โ€“ especially around virtualization โ€“ which many other customers have encountered behind closed doors. The case validates that Oracle sometimes demands things not explicitly in contracts. For other enterprises, itโ€™s a wake-up call to diligently manage Oracle licenses, not accept Oracleโ€™s claims at face value, and know that it is possible to push back successfully with the right approach.

Q: How can we prevent an Oracle audit from becoming a dispute?
A: Preparation and good license hygiene are key. Keep accurate records of your Oracle usage and ensure compliance with your purchased licenses. Before an audit ever happens, clarify any uncertain terms in your contracts (for example, how virtualization is handled). During an audit, cooperate reasonably but set boundaries โ€“ provide required data, but donโ€™t volunteer extraneous information that could be used against you. Involve legal/licensing experts early to communicate with Oracle on solid footing. Essentially, avoid being caught off-guard: if youโ€™ve done your homework on your entitlements and usage, an audit is far less likely to escalate into a conflict like Oracle vs. Mars.

Read more about our Oracle Audit Defense Service.

The #1 Oracle Audit Defense Team โ€“ Redress Compliance

Do you want to know more about our Oracle Audit Defense Service?

Please enable JavaScript in your browser to complete this form.
Name
Author
  • Fredrik Filipsson

    Fredrik Filipsson is the co-founder of Redress Compliance, a leading independent advisory firm specializing in Oracle, Microsoft, SAP, IBM, and Salesforce licensing. With over 20 years of experience in software licensing and contract negotiations, Fredrik has helped hundreds of organizationsโ€”including numerous Fortune 500 companiesโ€”optimize costs, avoid compliance risks, and secure favorable terms with major software vendors. Fredrik built his expertise over two decades working directly for IBM, SAP, and Oracle, where he gained in-depth knowledge of their licensing programs and sales practices. For the past 11 years, he has worked as a consultant, advising global enterprises on complex licensing challenges and large-scale contract negotiations.

    View all posts

Redress Compliance