Oracle SQL injection lateral attacks

2008-07-19T00:00:00
ID SECURITYVULNS:VULN:8951
Type securityvulns
Reporter BUGTRAQ
Modified 2008-07-19T00:00:00

Description

SQL injection into uncontrolled PL/SQL procedires is possible with e.g. modification of data format with ALTER SESSION.