David Litchfield has just published two chapters from his book The Oracle Hacker’s Handbook: Hacking and Defending Oracle.
Indirect Privilege Escalation (PDF)
In this chapter, David gives two examples, one with CREATE ANY TRIGGER and another with CREATE ANY VIEW to demonstrate how these privileges can be abused to gain DBA privileges. In fact, a user who has the CREATE ANY x privilege can trivially gain DBA privileges, and SQL injection has a lot to do with it.
Defeating Virtual Private Databases (PDF)
Virtual Private Databases (VPDs) allow a user to access only the data that the policy specifies they can access, and no more. In this chapter, David demonstrates how to trick Oracle into dropping a policy and how to defeat VPDs with raw file access. Again, SQL injection is the main culprit.
Possibly related:
- Running on a Virtual Private Server and a Couple of Pictures
- Ubuntu on Microsoft Virtual PC Works Like a Charm
- Open source databases
- Oracle E-Business Suite Vulnerability: Users Passwords Decrypted
- OracleCommunity.net the Social Network for Oracle People
Tagged hack, Security, sql-injection | Post a Comment
Hope everything is working out...
Home > About This Post
This entry was posted by Eddie Awad on Monday, January 29th, 2007, at 12:51 pm, and was filed in Oracle, Tips.
Subscribe to the
RSS 2.0 feed for all comments to this post.
Post a Comment