CVE-2011-2322

Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows remote authenticated users to affect integrity and availability, related to SYSDBA...

Design/Logic Flaw

Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows remote authenticated users to affect integrity and availability, related to SYSDBA...

CVE-2011-2322

Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows remote authenticated users to affect integrity and availability, related to SYSDBA...

CVE-2011-2253

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYSDBA...

Design/Logic Flaw

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYSDBA...

CVE-2011-2253

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYSDBA...

CVE-2011-2253

CVE-2011-2253 relates to an unspecified vulnerability in the Oracle Database Server Core RDBMS component (Oracle DB Server 10.2.0.3–11.2.0.2) that allows remote authenticated users to affect confidentiality, integrity, and availability, with impact linked to SYSDBA. The vulnerability is documente...

CVE-2011-0793

CVE-2011-0793 affects Oracle Database Server, specifically the Database Vault component, with affected versions: 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1. The vulnerability is described as “unspecified” and a remote authenticated user could impact integrity and availability , with the...

A modify Oracle User Password tips-vulnerability warning-the black bar safety net

Database version: 9.2.0.5 Sometimes we may not know a user's password, but also need to the user do some operation, but also can not go to modify this user's password, this time, you can use some little tricks, to complete the operation. The specific operation process is as follows: SQLPlus:...

Design/Logic Flaw

Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the...

CVE-2008-6065

Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the...

CVE-2008-6065

Oracle Database Server 10.1/10.2/11g vulnerability: GRANTs for CREATE ANY DIRECTORY plus CREATE OR REPLACE DIRECTORY aliasing allow remote authenticated users to abuse aliased pathnames to overwrite the password file via UTL_FILE, potentially elevating to SYSDBA. Root cause is directory permissio...

CREATE ANY DIRECTORY to SYSDBA

I have found a serious privilege escalation in the Oracle DB that raises a lower privileged user with CREATE ANY DIRECTORY to that of SYSDBA by directly overwriting the hidden binary password file with a known binary password file via UTLDIR. Full discussion of how to defend and respond to this a...

Oracle Database Server 'CREATE ANY DIRECTORY'特权提升漏洞

BUGTRAQ ID: 31738 CNCAN ID：CNCAN-2008101405 Oracle Database Server是一款大型企业级的数据库服务程序。 Oracle Database Server 'CREATE ANY DIRECTORY'用户特权相关处理存在问题，远程攻击者可以利用漏洞获得SYSDBA特权权限。 通过UTLDIR使用已知两进制密码文件可直接覆盖隐藏的两进制文件，而使拥有CREATE ANY DIRECTORY低权限的用户获得SYSDBA特权。 目前如下链接进行了一定程度的分析目前不能连接：...

Oracle Database Server 11.1 - CREATE ANY Directory Privilege Escalation

Oracle Database Server 11.1 - CREATE ANY Directory Privilege Escalation source: https://www.securityfocus.com/bid/31738/info Oracle Database Server is prone to a privilege-escalation issue related to the 'CREATE ANY DIRECTORY' user privilege. Attackers may exploit this issue to gain full SYSDBA...

Oracle Database Server 11.1 - 'CREATE ANY Directory' Privilege Escalation

source: https://www.securityfocus.com/bid/31738/info Oracle Database Server is prone to a privilege-escalation issue related to the 'CREATE ANY DIRECTORY' user privilege. Attackers may exploit this issue to gain full SYSDBA privileges on the vulnerable database server. This issue affects Oracle...

Oracle Database Server <= 10.1.0.2 Buffer Overflow Exploit

No description provided by source. / Advanced SQL Injection in Oracle databases Exploit for the buffer overflow vulnerability in procedure MDSYS.MD2.SDOCODESIZE of Oracle Database Server version 10.1.0.2 under Windows 2000 Server SP4. Fixes available at http://metalink.oracle.com. The exploit...

Firebird ISC_PASSWORD环境变量非授权访问漏洞

BUGTRAQ ID: 29123 CVECAN ID: CVE-2008-1880 Firebird是一款提供多个ANSI SQL-92功能的关系型数据库，可运行在Linux、Windows和各种Unix平台下 Gentoo的init脚本（/etc/conf.d/firebird）在启动Firebird时默认会设置ISCPASSWORD环境变量，当以SYSDBA用户身份连接的客户端没有提供口令时会使用这个变量，这允许远程攻击者无需提供凭据便认证为SYSDBA用户，访问除用户和口令数据库之外的整个数据库。 Firebird 2.0.3.12981.0 Gentoo ------...

Default configuration

The default configuration of Firebird before 2.0.3.12981.0-r6 on Gentoo Linux sets the ISCPASSWORD environment variable before starting Firebird, which allows remote attackers to bypass SYSDBA authentication and obtain sensitive database information via an empty password...

CVE-2008-1880

The default configuration of Firebird before 2.0.3.12981.0-r6 on Gentoo Linux sets the ISCPASSWORD environment variable before starting Firebird, which allows remote attackers to bypass SYSDBA authentication and obtain sensitive database information via an empty password...