I saw a news item on EWeek today in an article written by Paul F. Roberts titled "New Security Risks Hit Oracle" that talks about the recent Oracle worm and how it does not use any security bugs but exploits configuration insecurities. The key information in this post is the announcement that last week Alex Kornbrust reported more than 250 SQL Injection bugs in standard packages shipped in the Oracle 10g Release 1 database. A quote from the article says:
"said he passed details to Oracle last week on more than 250 SQL injection vulnerabilities in the company's 10g Release 1 database server. Kornbrust said he found the SQL injection holes in just 6 hours using automated vulnerability scanning tools to analyze about 9,000 software packages and functions that are part of 10g Release 1."
Alex also developed exploit code for some of the bugs that can be used to escalate privileges. He said up to 30% of the bugs can be used to escalate privileges.
Separately on Alex's "Upcoming Oracle Security Alerts" he shows that he has reported 25 vulnerabilities in the October 18 2005 Critical Patch update.
This totals more than 275 new bugs in the Oracle database products, almost exclusively in built-in PL/SQL packages that in most cases have PUBLIC execute privileges.
Blog
Pete Finnigan's Oracle Security Weblog
This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.
[Previous entry: "Many ways to become DBA"] [Next entry: "Oracle XE will get upgrades with security fixes rather than patches"]
November 2005
- UKOUG so far - 11/01/2005 by 11/01/2005
- Oracle Express - will we get security patches? - I truly hope so - 11/02/2005 by 11/02/2005
- Oracle has released a new security vulnerability fixing policy and process - 11/03/2005 by 11/03/2005
- Why Protect Fort Knox Borders But Ignore The Gold? - 11/04/2005 by 11/04/2005
- Oracle alerts customers to the so called voyager worm - 11/06/2005 by 11/06/2005
- Oracle adds fine-grain features to ID security - 11/07/2005 by 11/07/2005
- Bruce Schneier blogs about the Oracle password weakness paper - 11/08/2005 by 11/08/2005
- More than 275 new security bugs found last week in the Oracle 10g database - 11/09/2005 by 11/09/2005
- Commercial rainbow cracking - 11/11/2005 by 11/11/2005
- DBMS_ASSERT can be used to protect against SQL Injection - 11/12/2005 by 11/12/2005
- Problems with the October CPU discovered - 11/14/2005 by 11/14/2005
- Oracle responds to the password algorithm weakness paper - 11/15/2005 by 11/15/2005
- OracleXE beta 2 released - 11/17/2005 by 11/17/2005
- Listener password management features - 11/18/2005 by 11/18/2005
- A new Oracle security checklist paper from Oracle - 11/19/2005 by 11/19/2005
- Two new speaking events added to my site - 11/20/2005 by 11/20/2005
- Happy 20th birthday Windows - 11/22/2005 by 11/22/2005
- Oracle Database security checklist from Oracle - 11/24/2005 by 11/24/2005
- 0rm has updated orabf the Oracle password cracker - 11/25/2005 by 11/25/2005
Archives
Syndication
Powered by gm-rss 2.0.0
