Infos

Sie befinden sich aktuell in den Alexander Kornbrust Oracle Security Blog Blog-Archiven für den folgenden Tag 15 Jan 2009.

Calendar
Januar 2009
M D M D F S S
« Dez   Feb »
 1234
567891011
12131415161718
19202122232425
262728293031  
Links

Archive für 15 Jan 2009

First exploits (non-DB) for January 2009 CPU

Joxean Koret has published the first exploit for remote code execution on Oracle Secure Backup 10g. Having the name “Secure” in the title is probably not always the smartest idea…

And an additional exploit for Oracle TimesTen from Joxean too.

Exploits for October 2008 CPU + whitepaper “Different ways to guess SIDs” published

In the first week of January Alexandr Polyakov from dsec.ru has published 3 exploits on the website of dsec.ru.

Alexandr has published also a really good whitepaper how to guess the SID of Oracle databases. Some of the bugs (database control/database vault control) and techniques (like the concept sidguessing) were found / developed first by Red-Database-Security.

The whitepaper describes

  • Getting the SID and Servicename
  • Guessing the SID (default SID, typical SID, dictionary, Bruteforce)
  • Searching the SID (Database Control, XDB,…)
  • Getting the SAP SID
  • Getting the SID via SQL Injection
  • Getting the SID via the target system (Registry, FTP, MSSQL, OS account)
  • Getting the SID from the company network (Sniffing, another DB, …)

|