Oracle DBMS_STANDARD security problem

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Oracle DBMS_STANDARD security problem
From: "putosoft softputo" <hasecorp@xxxxxxxxxxx>
Date: Mon, 12 Jun 2006 22:05:36 +0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Hello,

I have been found a security problem in the DBMS_STANDARD package. Anyoneknowns any kind of workaround for this problem? You can't create a packagecalled DBMS_STANDARD and rename the old one to any other name to create anenvoltory so there is no way (I think) to solve it.

Any recomended workaround (except switching to PostgreSQL), please?

_________________________________________________________________

Acepta el reto MSN Premium: Correos más divertidos con fotos y textosincreíbles en MSN Premium. Descárgalo y pruébalo 2 meses gratis.http://join.msn.com?XAPID=1697&DI=1055&HL=Footer_mailsenviados_correosmasdivertidos

Prev by Date: PhpMyFactures 1.0 Cross Site Scripting, SQL Injection, Full Path Disclosure and others
Next by Date: Re: PaintedOver.com, Inc. 2004-2006 Xss Vulnerabilities
Previous by thread: PhpMyFactures 1.0 Cross Site Scripting, SQL Injection, Full Path Disclosure and others
Next by thread: file include exploits in mcGuestbook 1.3
Index(es):
- Date
- Thread