The Blackhat Europe 2010 „Oracle, Interrupted: Stealing Sessions and Credentials“ (presentation, whitepaper) of Steve Ocepek and Wendel G. Henrique are online. An interview with Steve about the talk can be found here.
As mentioned in a previous blog post this talk shows how to intercept unencrypted (=default) TNS connections and inject statements into a running session. Steve and Wendel will soon release 2 tools Vamp and thicknet.
I will try to present these tools at the DOAG Expertenseminar in Berlin.
A good summary of the talk can be found at Peter Van Eeckhoutten’s blog.