Sponsored Links

 

 

Home > Programming > Oracle Programming

 

Oracle PL/SQL Injection

Source: www.blackhat.com
Topic: Oracle Programming

Short Desciption:
NGS Consulting Next Generation Security Software Ltd. What is PL/SQL? What is PL/SQL? • Procedural Language / Structured Query Language • Oracles extension to standard SQL Programmable like T-SQL ...

 

Content Inside:
NGS Consulting Next Generation Security Software Ltd. Oracle PL/SQL Injection David Litchfield NGS Consulting Next Generation Security Software Ltd. What is PL/SQL? What is PL/SQL? • Procedural Language / Structured Query Language • Oracles extension to standard SQL Programmable like T-SQL in the Microsoft world. • Used to create • Stored Procedures • Functions • Packages (collections of procedures and functions) • Triggers • Objects • Extends functionality with External Procedures NGS Consulting Next Generation Security Software Ltd. Privileges - Definer vs. Invoker rights Privileges - Definer vs. Invoker rights • PL/SQL executes with the privileges of the definer • A procedure owned by SYS executes with SYS privileges • AUTHID CURRENT_USER keyword • PL/SQL created using the AUTHID CURRENT_USER keyword executes with the privileges of the invoker • A procedure owned by SYS but called by SCOTT executes with the privileges of SCOTT • Analogous to Suid programs in the *nix world. NGS Consulting Next Generation Security Software Ltd. PL/SQL over the Web PL/SQL over the Web • Oracle Application Server / Web Portal • http://server/pls/dad/pkg.proc?p_in=foobar • Acts as a proxy, passes request to the database server and the PL/SQL executes inside the database server - not the front end. NGS Consulting Next Generation Security Software Ltd. PL/SQL Injection PL/SQL Injection • SELECT statements • DML - UPDATE, DELETE, INSERT • Anonymous PL/SQL Blocks in Procedures NGS Consulting Next Generation Security Software Ltd. PL/SQL SELECT Example PL/SQL SELECT Example CREATE OR REPLACE PROCEDURE LIST_LIBRARIES(P_OWNER VARCHAR2) AS TYPE C_TYPE IS REF CURSOR; CV C_TYPE; BUFFER VARCHAR2(200); BEGIN DBMS_OUTPUT.ENABLE(1000000); OPEN CV FOR SELECT OBJECT_NAME FROM ALL_OBJECTS WHERE OWNER = || P_OWNER || AND OBJECT_TYPE=LIBRARY; LOOP FE ...

 

add to Google Reader add to Google Bookmark add to bloglines add to newsgator add to FURL add to digg add to webnews add to Netscape add to Yahoo MyWeb add to spurl.net add to diigo Bookmark newsvine Bookmark del.icio.us Bookmark @ SIMPIFY Bookmark MISTER WONG Bookmark Linkarena Bookmark icio.de Bookmark oneview Bookmark folkd.com Bookmark yigg.de Bookmark reddit Bookmark StumbleUpon Bookmark Slashdot Bookmark blinklist Bookmark technorati add to blogmarks add to blinkbits add to ma.gnolia add to smarking.com add to netvouz add to co.mments add to Connotea add to de.lirio.us

 

Related PDF Files

Oracle Cryptographic Toolkit Programmers Guide


Topic: Oracle Programming

Each OCI function description contains the following informa- tion: Refer to Chapter 2, OCI Programming Basics, in the Programmers Guide to the Oracle Call Interface TM for an overview of the steps ...

Managing Oracle Real Application Clusters


Topic: Oracle Programming

Managing Oracle Real Application Clusters Page 2 Managing Oracle Real Application Clusters Overview ... Configuration Assistant (DBCA) is automatically launched at the end of the install to create ...

Oracle SQL*Net and Net8 Malformed Packet Denial of Service ...


Topic: Oracle Programming

Oracle SQL*Net and Net8 Malformed Packet Denial of Service Vulnerability Overview A potential security vulnerability has been discovered in Net8 (formerly known as SQL*Net). The Oracle8i database ...

Oracle PL/SQL Injection


Topic: Oracle Programming

NGS Consulting Next Generation Security Software Ltd. What is PL/SQL? What is PL/SQL? • Procedural Language / Structured Query Language • Oracles extension to standard SQL Programmable like T-SQL ...

Intro to PL/SQL


Topic: Oracle Programming

Introduction to PL/SQL 2-day Workshop Give your IT staff the knowledge of using Oracles procedural language: PL/SQL. The focus of this course is to students with a working knowledge of SQL the ...

 

Sponsored Links