[转载]Dangling Cursor Snarfing: A New Class of Attack in Oracle
信息来源:邪恶八进制信息安全团队([url]www.eviloctal.com[/url])[b]Introduction[/b]
In Oracle, a failure to close cursors created and used by DBMS_SQL or a failure to clean
up open cursors in the event of an exception can lead to a security hole. If the cursor in
question has been created by higher privileged code and left hanging then it's possible for
a low privileged user to snarf and use the cursor outside of the application logic that
created it. This can lead to data being exposed. Ensuring that cursors are closed after use
is, of course, good programming practice but, as we know, good programming practices
do not always prevail. What is detailed in this document should provide a security reason
as to why developers should ensure that cursors are closed properly, especially in the
event of an exception.
页:
[1]