3 matches found
Oracle TNS Listener AUTH_SESSKEY Buffer Overflow.
$Id: tnsauthsesskey.rb 8183 2010-01-21 00:30:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
Oracle 10gR2 TNS Listener AUTH_SESSKEY Buffer Overflow
This module exploits a stack buffer overflow in Oracle. When sending a specially crafted packet containing a long AUTHSESSKEY value to the TNS service, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Use a low-privileged Oracle database accounts give the OS access permissions-bug warning-the black bar safety net
Author:Mickey These days look at the article called"Penetration: from application down to OS Oracle"of the document,feel quite interesting,the document probably means that is,if the ORACLE service is using the administrator account to start,as long as you have a have resource and connect privileg...