Re: Workaround for unpatched Oracle PLSQL Gateway flaw

To: <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: Re: Workaround for unpatched Oracle PLSQL Gateway flaw
From: "David Litchfield" <davidl@xxxxxxxxxxxxxxx>
Date: Wed, 8 Feb 2006 19:48:32 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20060208174857.27177.qmail@xxxxxxxxxxxxxxxxx>

So, like, what abouthttp://www.integrigy.com/info/IntegrigySecurityAnalysis-MODPLSQLVuln.pdf

This provides an excellent analysis of the problem. Further, it discussesthe recommendation made by Vladimir Zakharychev from Webrecruiter. Thisrecommendation is to set the "always_describe" /"PlsqlAlwaysDescribeProcedure" to "yes" / "on" in the "wdbsvr.app" /"dads.conf" file. This is a simple workaround and, as I can confirm, it doesprevent exploitation. Why on earth didn't Oracle make this simplerecommendation in the January 2006 CPU?

I hereby withdraw my workaround and would encourage everyone to adoptVladimir's.


Cheers,
David Litchfield

References:
- Re: Workaround for unpatched Oracle PLSQL Gateway flaw
  - From: a

Prev by Date: iDefense Security Advisory 02.07.06: QNX Neutrino RTOS libAp ABLPATH Buffer Overflow Vulnerability
Next by Date: iDefense Security Advisory 02.07.06: QNX Neutrino RTOS phgrafx Command Buffer Overflow
Previous by thread: Re: Workaround for unpatched Oracle PLSQL Gateway flaw
Next by thread: HYSA-2006-001 phpBB 2.0.19 search.php and profile.php DOS Vulnerability
Index(es):
- Date
- Thread