Topics
Tags
Favorite Links
Translate
Pick Your Language
Security Books
Archives
Recent entries...
Twitter
Sponsored Ads
Popular Pages
Sponsored Ads
The Web Security Mailing List

« "The Anatomy of Cross Site Scripting" Paper released | Main | Microsoft Frontpage Overflow »

Oracle Application Server 9i and RDBMS Multiple SQL Injection Vulnerabilities

"Oracle's RDBMS, a leading database server package, supports stored packages and procedures through the use of PL/SQL. These packages and procedures can be accessed through Oracle's Application Server's Portal module. Oracle Application Server is a web server designed for Oracle applications. Many of the PL/SQL packages and procedures are vulnerable to SQL Injection. Using these vulnerabilities an unauthenticated attacker can gain access to all data in the database from the Internet." - ngssoftware.com

Full NGSSoftware Insight Security Advisory

Posted by Robert A. on 11/06/2003 in Vulns | Permalink | Reddit

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.


All Comments are Moderated and will be delayed!


Post a comment







Remember personal info?


Copyright 2000-2009 CGISecurity.com | Privacy Policy| java mailing list| resolve ip| Mailing Lists | Sony deals