David Litchfield has just published two chapters from his book The Oracle Hacker’s Handbook: Hacking and Defending Oracle.
Indirect Privilege Escalation (PDF)
In this chapter, David gives two examples, one with CREATE ANY TRIGGER and another with CREATE ANY VIEW to demonstrate how these privileges can be abused to gain DBA privileges. In fact, a user who has the CREATE ANY x privilege can trivially gain DBA privileges, and SQL injection has a lot to do with it.
Defeating Virtual Private Databases (PDF)
Virtual Private Databases (VPDs) allow a user to access only the data that the policy specifies they can access, and no more. In this chapter, David demonstrates how to trick Oracle into dropping a policy and how to defeat VPDs with raw file access. Again, SQL injection is the main culprit.
Related articles:
Tagged hack, Security, sql-injection | Comments Closed | Trackbacks Closed
Home > About This Post
This entry was posted by Eddie Awad on Monday, January 29th, 2007, at 12:51 pm, and was filed in Oracle, Tips.
Subscribe to the
RSS 2.0 feed for all comments to this post.
Comments Closed
Sorry, but comments have been closed.