Using Oracle Forensics to determine vulnerability to Zero Day exploits

This paper has shown the reader what PLSQL injection is and how it can be exploited to gain DBA whilst bypassing current IDS technology. We then explored how to find PLSQL injection vulnerabilities in order to identify potential new zerodays. Then by comparing DBstates before and after January 2007...
By Paul Wright
February 27, 2007

All papers are copyrighted. No re-posting of papers is permitted