Monthly Archives: June 2016

#Oracle #Infosec Common Mistakes: Granting DBA to application schema

Posted on June 16, 2016 by rlockard

I’m keep seeing this common mistake; The application schema was granted DBA privileges. Here is the problem, when a sql injection bug is found, then all DBA commands are available to the attacker. The truth is, granting DBA to an … Continue reading →

Posted in infosec, Security | Tagged infosec, oracle | Leave a comment