Kommentare fuer Blog http://blog.red-database-security.com Sat, 05 Jul 2008 19:04:54 +0000 http://wordpress.org/?v=2.2.1 Kommentar zu Oracle CPU April 2008 - Update von Alexander Kornbrust http://blog.red-database-security.com/2008/04/16/oracle-critical-patch-update-cpu-april-2008/#comment-6425 Alexander Kornbrust Mon, 16 Jun 2008 17:28:56 +0000 http://blog.red-database-security.com/2008/04/16/oracle-critical-patch-update-cpu-april-2008/#comment-6425 Hello zg, I guess you mean privilege escalation. SQL Injection is always a security problem even if privilege escalation is not possible. Even if AUTHID='CURRENT_USER' privilege escalation is sometimes possible, e.g. KUPW$WORKER, KUPM$MCP, ... have all AUTHID='CURRENT_USER' and are exploitable. Hope this helps. Regards Alexander Hello zg,

I guess you mean privilege escalation. SQL Injection is always a security problem even if privilege escalation is not possible.

Even if AUTHID=’CURRENT_USER’ privilege escalation is sometimes possible, e.g. KUPW$WORKER, KUPM$MCP, … have all AUTHID=’CURRENT_USER’ and are exploitable.

Hope this helps.

Regards

Alexander

]]> Kommentar zu Oracle CPU April 2008 - Update von >zg http://blog.red-database-security.com/2008/04/16/oracle-critical-patch-update-cpu-april-2008/#comment-6424 >zg Mon, 16 Jun 2008 16:52:13 +0000 http://blog.red-database-security.com/2008/04/16/oracle-critical-patch-update-cpu-april-2008/#comment-6424 I have a question, how can we exploit injections like SDO_UTIL [DB05], SDO_GEOM [DB06] and SDO_IDX [DB07] when they are defined with AUTHID CURRENT_USER ? I have a question, how can we exploit injections like SDO_UTIL [DB05], SDO_GEOM [DB06] and SDO_IDX [DB07] when they are defined with AUTHID CURRENT_USER ?

]]> Kommentar zu Oracle Critical Patch Update April 2008 is out von Database Expert! http://blog.red-database-security.com/2008/04/15/oracle-critical-patch-update-april-2008-is-out/#comment-6262 Database Expert! Sun, 27 Apr 2008 11:43:50 +0000 http://blog.red-database-security.com/2008/04/15/oracle-critical-patch-update-april-2008-is-out/#comment-6262 Its cool article! Its cool article!

]]> Kommentar zu Looking Glass and Oracle 11g von Gary http://blog.red-database-security.com/2008/04/11/looking-glass-and-oracle-11g/#comment-5814 Gary Fri, 11 Apr 2008 21:17:10 +0000 http://blog.red-database-security.com/2008/04/11/looking-glass-and-oracle-11g/#comment-5814 Trying to work out the implications of this. Useful articles are this one which explains what LookingGlass is about. http://erratasec.blogspot.com/2008/02/unsafe-at-anyspeed.html and this one about complying with it http://blogs.msdn.com/david_leblanc/archive/2008/03/14/use-of-aslr-nx-etc.aspx Trying to work out the implications of this.
Useful articles are this one which explains what LookingGlass is about.
http://erratasec.blogspot.com/2008/02/unsafe-at-anyspeed.html
and this one about complying with it
http://blogs.msdn.com/david_leblanc/archive/2008/03/14/use-of-aslr-nx-etc.aspx

]]> Kommentar zu We proudly present: Anna Marie Kornbrust von D. Nowak http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5662 D. Nowak Fri, 14 Mar 2008 12:04:35 +0000 http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5662 Congratulations, to see a child grow is what realy matters... Congratulations,

to see a child grow is what realy matters…

]]> Kommentar zu We proudly present: Anna Marie Kornbrust von Slavik Markovich http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5633 Slavik Markovich Thu, 06 Mar 2008 15:08:26 +0000 http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5633 <p>Congratulations Alex, she is beautiful.<br /> Slavik</p> Congratulations Alex, she is beautiful.
Slavik

]]> Kommentar zu We proudly present: Anna Marie Kornbrust von Eric Grancher http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5629 Eric Grancher Tue, 04 Mar 2008 22:34:36 +0000 http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5629 congratulation, you daughter is beautiful (and the picture is well short) eric congratulation,
you daughter is beautiful
(and the picture is well short)
eric

]]> Kommentar zu We proudly present: Anna Marie Kornbrust von Joxean Koret http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5627 Joxean Koret Tue, 04 Mar 2008 17:58:39 +0000 http://blog.red-database-security.com/2008/03/04/we-proudly-present-anna-marie-kornbrust/#comment-5627 Congratulations Alex ;) Congratulations Alex ;)

]]> Kommentar zu First exploits for CPUJan2008 published von Joxean Koret http://blog.red-database-security.com/2008/01/31/first-exploits-for-cpujan2008-published/#comment-5059 Joxean Koret Fri, 01 Feb 2008 21:14:04 +0000 http://blog.red-database-security.com/2008/01/31/first-exploits-for-cpujan2008-published/#comment-5059 Sorry for the typo: >Many of these were reported to 3rd parties (iDefense and ZDI). Many "others" were reported to 3rd parties. Joxean Koret Sorry for the typo:

>Many of these were reported to 3rd parties (iDefense and ZDI).

Many “others” were reported to 3rd parties.

Joxean Koret

]]> Kommentar zu First exploits for CPUJan2008 published von Joxean Koret http://blog.red-database-security.com/2008/01/31/first-exploits-for-cpujan2008-published/#comment-5057 Joxean Koret Fri, 01 Feb 2008 21:12:08 +0000 http://blog.red-database-security.com/2008/01/31/first-exploits-for-cpujan2008-published/#comment-5057 Hi Alex, I have 23 currently unfixed flaws in Oracle Database (taken, as you, from the secalert report). But that number only reflects the total vulnerabilities I reported directly. Many of these were reported to 3rd parties (iDefense and ZDI). Joxean Koret Hi Alex,

I have 23 currently unfixed flaws in Oracle Database (taken, as you, from the secalert report). But that number only reflects the total vulnerabilities I reported directly. Many of these were reported to 3rd parties (iDefense and ZDI).

Joxean Koret

]]>