Computer Security
[EN] securityvulns.ru no-pyccku


Oracle SQL injection lateral attacks
updated since 27.04.2008
Published:19.07.2008
Source:
SecurityVulns ID:8951
Type:library
Threat Level:
5/10
Description:SQL injection into uncontrolled PL/SQL procedires is possible with e.g. modification of data format with ALTER SESSION.
Original documentdocumentDavid Litchfield, Lateral SQL Injection Revisited - No Special Privs Required (19.07.2008)
 documentDavid Litchfield, A New Class of Vulnerability in Oracle: Lateral SQL Injection (27.04.2008)
Files:LateralSQLInjection

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod