Oracle Evil cursor injection exploit.

ora-exploits-evilcursor is an Oracle Evil cursor injection exploits repository – Perl & SQL version.
List of Perl Exploit :
– ctxsys-drvxtabc-create_tablesV2.pl : Oracle ctxsys.drvxtabc.create_tables exploit (9i/10g)
– dbms_cdc_subscribeV2.pl : Remote Oracle DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION exploit (9i/10g)
– dbms_meta_get_ddlV2.pl : Remote Oracle DBMS_METADATA.GET_DDL exploit (9i/10g)
– kupm-mcpmainV2.pl : Remote Oracle KUPM$MCP.MAIN exploit (10g)
– kupv-ft_attach_jobV2.pl : Remote Oracle KUPV$FT.ATTACH_JOB exploit (10g)
– kupw-workerV2.pl : Remote Oracle KUPW$WORKER.MAIN exploit (10g)
– sys-lt-compressworkspacetreeV2.pl : Oracle SYS.LT.COMPRESSWORKSPACETREE exploit (9iR2/10gR1,10gR2,11gR1)
– sys-lt-findricsetV2.pl : Oracle SYS.LT.FINDRICSET exploit (11g/10g)
– sys-lt-mergeworkspaceV2.pl : Oracle SYS.LT.MERGEWORKSPACE exploit (9iR2/10gR1,10gR2,11gR1)
– sys-lt-removeworkspaceV2.pl : Oracle SYS.LT.REMOVEWORKSPACE exploit (9iR2/10gR1,10gR2,11gR1)

SQL Databases :
+ bunkerview.sql
+ ctxsys-drvxtabc-create_tablesV2.sql
+ dbms_cdc_subscribeV2.sql
+ dbms_meta_get_ddlV2.sql
+ kupm-mcpmainV2.sql
+ kupv-ft_attach_jobV2.sql
+ kupw-workerV2.sql
+ sys-lt-compressworkspacetreeV2.sql
+ sys-lt-findricsetV2.sql
+ sys-lt-mergeworkspaceV2.sql
+ sys-lt-removeworkspaceV2.sql

Tested on “Oracle Database 10g Enterprise Edition Release 10.1.0.3.0”

Download : ora-exploits-evilcursor-master.zip(39 KB)  | Clone Url
Source : http://www.purificato.org/