Thursday, May 23, 2013
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Europe Proposes New Investment Plan To Advance Chip Making
Samsung Establishes Own U.S. Patent Firm
NVIDIA Brings The Titan GPU To Gamers With The GeForce GTX 780
OCZ Launches New Vertex 450 Series Solid State Drives
Samsung To Make OLED Panels For Google Glass: report
Amazon Kindle Fire HD tablets Available on June 13
Lenovo Reports Strong Fourth Quarter and Full Year Results
HP Unveils New Windows 8 PCs
Active Discussions
CDR for car Sat Nav
deleted
CD Drive Retrieve
burning
Extremely Slow External CD (Samsung SE-S084C)
Best optical drive for ripping CD's? My LG 4163B is mediocre.
Verbatim DVD+R still tops?
Doubt in choosing an Optiarc writer
 Home > News > General Computing > Researc...
Last 7 Days News : SU MO TU WE TH FR SA All News

Friday, April 25, 2008
Researcher finds new way to hack Oracle database

Security researcher David Litchfield has released technical details of a new type of attack that could give a hacker access to an Oracle database.

Called a lateral SQL injection, the attack could be used to gain database administrator privileges on an Oracle server in order to change or delete data or even install software, Litchfield said in an interview on Thursday.

Litchfield first disclosed this type of attack at the Black Hat Washington conference last February, but on Thursday he published a paper with technical details.

In a SQL injection, attackers create specially crafted search terms that trick the database into running SQL commands. Previously, security experts thought that SQL injections would work only if the attacker was inputting character strings into the database, but Litchfield has shown that the attack can work using new types of data, known as date and number data types.

Litchfield's attack targets the Procedural Language/SQL programming language used by Oracle developers.

Oracle did not return so far a comment.

Previous
 		Next
Dell to factory-install Windows XP after June 30        All News        Pioneer and Matsushita Reach Basic Agreement on PDP Business
Dell to factory-install Windows XP after June 30     General Computing News      Microsoft Leaves MSN Music Subscribers in Cold
Source Link Get RSS feed Easy Print E-Mail this Message
Related News
Oracle Unveils Faster Servers
New Emergency Fix Releaseed For Java zero-day Exploit Released
New Critical Patch For Java SE Released
Oracle Buys Acme Packet
Oracle Releases Critical Patch Update for Java SE
Oracle Patches Java Bugs
Oracle Buys Eloqua
Nokia Location Platform Available To Oracle Users
AMD and Oracle to to Explore Heterogeneous Computing for Java
Judge Asks Google, Oracle To Disclose Possible Names Of Paid Reporters
SAP To Pay Oracle $306 Million To Avoid Trial
Judge Rules In Favor Of HP In Itanium Case

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2013 - All rights reserved -
Privacy policy - Contact Us .