Apr 03
Pete Finnigan’s Oracle security weblog – Bunker has released a 0-day Oracle exploit
April 3, 2007 at 4:47 pm 1 views
Filed under: News
Author saw today via Alex, Milw0rm and Bugtraq that Andrea “bunker” Purificato has released a new exploit in DBMS_AQ.ENQUEUE for 10gR1, version 10.1.0.3.0. The [0-day] Remote Oracle DBMS_AQ.ENQUEUE exploit (10g) is written in Perl and the example uses a payload of granting ALL PRIVILEGES and DBA to the supplied Oracle user account.
Posted on Tuesday, April 3rd, 2007 at 4:47 pm and under category News.
You can read any responses through the RSS 2.0 feed.
You can give a response, or trackback from your site.