Database News

Top Articles

Hover to load posts
Features

Top Articles

Hover to load posts
Scripts

Top Articles

Hover to load posts
Mysql

Top Articles

Hover to load posts
MS SQL

Top Articles

Hover to load posts
Oracle

Top Articles

Hover to load posts
MS Access

Top Articles

Hover to load posts
DB2

Top Articles

Hover to load posts
PostgreSQL

Top Articles

Hover to load posts
SAP

Top Articles

Hover to load posts
PHP

Top Articles

Hover to load posts
Forums Forums

Oracle database; not so “unbreakable” as one would think

Written By

Feb 4, 2010

1 minute read

At a recent security conference, David Litchfield, researcher at NGS Consulting, offered up a demonstration that exposed how a user could bypass Oracle Label Security and take complete control over an Oracle 11g database—granting himself system level privileges.

And while Litchfield has devoted ample time finding such security vulnerabilities in Oracle, Litchfield is reportedly moving on to other pastures—possibly computer forensics. Leaving on a high note, Litchfield grades Oracle with a B+ for security in the current Oracle 11g database but also added he thought Oracle was placing too much of the responsibility of security on third-party security tools.

DatabaseJournal.com Staff

Recommended for you...

MySQL

Best Certifications for Database Administrators

Database administrators are responsible for the day to day management of database environments, including relational databases management systems, cloud databases, or those used for database-driven web applications. Database administration is a great career choice, with plenty of employment options and (typically) a great salary. The competition for DBA jobs can be fierce, however, and, as […]

Ronnie Payne

Oct 14, 2022

Database News

Become More Efficient at Writing TSQL by Creating Code Snippets

A TSQL code snippet is a set of code that performs a task that can easily be placed in your TSQL code using SQL Server Management Studio (SSMS). Snippets are a great way to jump start creating a fragment of TSQL code for common types tasks, like creating a table, a stored procedure, a trigger, […]

Gregory Larsen

Jun 30, 2021

Database News

Line Numbers in SQL Server Management Studio

Have ever tried to debug a chunk of TSQL code (like a stored procedure) and found yourself trying to figure out which TSQL statement is at a particular line number? By default, SQL Server Management Studio (SSMS) doesn’t display numbers. But that is only the default, you can change it. To allow your Query window […]

Gregory Larsen

Sep 4, 2018

Database News

Couchbase Raises $60 Million to Fuel NoSQL Database Efforts

It takes a lot of money to build a database company in an industry dominated by giants like Oracle, Microsoft and IBM. It’s a lesson that open-source NoSQL database startup Couchbase knows well as it continues to raise funding to build its business. Couchbase officially announced on June 26 that it has raised an E […]

Sean Kerner

Jun 30, 2014

DatabaseJournal.com publishes relevant, up-to-date and pragmatic articles on the use of database hardware and management tools and serves as a forum for professional knowledge about proprietary, open source and cloud-based databases--foundational technology for all IT systems. We publish insightful articles about new products, best practices and trends; readers help each other out on various database questions and problems. Database management systems (DBMS) and database security processes are also key areas of focus at DatabaseJournal.com.

Oracle database; not so “unbreakable” as one would think

DatabaseJournal.com Staff

Company

Categories