Shell Code

December 3rd, 2004

Im Zusammenhang mit Oracles Security Alert #68 taucht häufig das Wort Shell Code auf. Ein DBA mag da an die typischen Shellscripts denken, die sind aber nicht gemeint. Shell Code sind kurze Stücke Maschinencode, die der Hacker in seinem Exploit an die DB sendet, und dann via Buffer Overflow von Oracle ausführen lässt, um die Herrschaft über einen Server zu gewinnen.
Pete Finnigan hat mehr zum Thema in seinem Artikel Three great papers on shell codes and encoding and decoding: “If you want to understand how a hacker thinks and to understand the lengths that they will go to exploit applications including getting past filters then you need to read these papers. The two by Rix and obscou are superb and well worth reading. The paper by skylined that I found first is also excellent.”

Related posts:

  1. DB Rootkits
  2. Variation von GRANT DBA TO SCOTT
  3. Closed, Not a Bug
  4. How to Secure Oracle in 20 Minutes
  5. DVD-Movie-PROTECT
Posted by maol
Filed in Technology
No Comments »

Leave a Reply

Comments will be sent to the moderation queue.

Maximum 5 links per comment. Do not use BBCode.