An investigation into PL/SQL Injection.
| Data(s) |
2013
|
|---|---|
| Resumo |
SQL injection is a common attack method used to leverage infor-mation out of a database or to compromise a company’s network. This paper investigates four injection attacks that can be conducted against the PL/SQL engine of Oracle databases, comparing two recent releases (10g, 11g) of Oracle. The results of the experiments showed that both releases of Oracle were vulner-able to injection but that the injection technique often differed in the packages that it could be conducted in. |
| Formato |
application/pdf |
| Identificador |
http://researchrepository.napier.ac.uk/10350/1/PL_SQLi_Cyberfor2013_camera_ready.pdf Paterson, Ross and Leimich, Petra (2013) An investigation into PL/SQL Injection. In: CyberForensics 2013: 3rd International Conference on Cybercrime, Security and Digital Forensics, 10 - 11 June 2013, Cardiff, Wales. |
| Idioma(s) |
en |
| Relação |
http://researchrepository.napier.ac.uk/10350/ |
| Palavras-Chave | #QA75 Electronic computers. Computer science |
| Tipo |
Conference or Workshop Item PeerReviewed |
