Alexander Kornbrust Oracle Security Blog » Print » New Oracle bugs and BSQL Hacker

New Oracle bugs and BSQL Hacker

Dieser Eintrag stammt von Alexander Kornbrust Am 20 Aug 2008 @ 18:45 In Tools, Oracle Security | 1 Kommentar

Today I reported 6 new security vulnerabilities to Oracle (2 Data Vault, 2 Auditing, 1 Discoverer, 1 Password Verification Function). Even if Oracle Security is getting better (see also [1] discussion on Pete’s Blog) there are still enough bugs available.

[2] Portcullis Labs released their free scanner [3] BSQL Hacker for detecting blind sql injection. BSQL Hacker is supporting Oracle, MSSQL and MySQL. At the moment I have no time to play longer with this tool but it looks promising (see [4] video).

Dieser Artikel wurde ausgedruckt ab Alexander Kornbrust Oracle Security Blog: http://blog.red-database-security.com

URL zum Artikel: http://blog.red-database-security.com/2008/08/20/new-oracle-bugs-and-bsql-hacker/

URLs in this post:
[1] discussion: http://www.petefinnigan.com/weblog/archives/00001194.htm
[2] Portcullis Labs: http://labs.portcullis.co.uk/
[3] BSQL Hacker: http://labs.portcullis.co.uk/application/bsql-hacker/
[4] video: http://www.vimeo.com/1536040?pg=embed&sec=1536040

Klicken hier zum Drucken.