Contact Us
Article
Hacker Tools New Update | Download Directory |
| Windows | Linux | Mac OS X | Mobile | Assessment | Defense | Documents | Miscellaneous |
Hacker Tools » Download -> Documents-> Security » create_any_directory_to_sysdba.pdf

This Directory TOP
joomlascan.py.txt
zfo3.txt
phpdj-rfi.txt
Cracking Password With Only Physical Access
sql-inject.pdf
sql-command.pdf
mxbb233-rfi.txt
Rootkits_final.zip
phpnukeplat-rfi.txt
Core02.pdf
ar38010.pdf
immunizing_the_internet.pdf
Phishing_DMosley.pdf
Spyware_and_The_Next_Level
ISMS_VKumar.pdf
phpjobscheduler-rfi.txt
YCS-2005-389.pdf
Chapter2.pdf
SEC314_Riley.pdf
Zfone_SSotillo.pdf
Mac OS X 10.4 Security Checklist
sslstrip-hijack.pdf
weaponizing-wireless.pdf
Advanced_Network_Exploitation_2009.pdf
H2HC-CFP-2006.txt
skype.txt
ms08_067_netapi.rb.txt
Frequency_HGantt.pdf
Security Analysis of Web Services - thesis
intelligent-debugging.pdf
cybercraft.pdf
Computer & Mind.pdf
Search

create_any_directory_to_sysdba.pdf

File Size: 430KB
Developer: http://www.oracleforensics.com/
Description:     An Oracle DB user which has been granted CREATE ANY DIRECTORY can use that system privilege to grant themselves the SYSDBA system privilege by creating a DIRECTORY pointing to the password file location on the OS and then overwriting it with a previously prepared known binary password file using UTL_FILE.PUT_RAW from within the DB. This paper will show how the issue can be exploited and most importantly how to secure against it.
Download:   create_any_directory_to_sysdba.pdf

 

Sponsor Links
Sponsor Links

Share/Bookmark
Copyright ©2009 Hacker Tools all rights reserved