According to foreign media reports, on the day the American people celebrated Halloween, the FullDisclosure security email list posted an email named "prank for Larry herison" with a source code section, this may be the first worm virus targeting Oracle databases. According to the SANS Internet Storm Center, the worm can be used to host all Oracle databases connected to the internet. according to foreign media reports, the American people celebrated Halloween on the day, the Full Disclosure security email list shows an email named "prank for Larry herison" with a piece of source code, which may be the first worm virus targeting the Oracle database.
According to the SANS Internet Storm Center, the worm can scan all Oracle databases connected to the network. after discovering the target, it will try to log on using several default usernames and passwords, after the logon is permitted, the worm will establish an attack platform in the database it enters.
The SANS Storm Center blog said: "For now, this worm does not constitute a serious threat, but it is equivalent to issuing an important warning that the worm will likely become a variant in the future, other breeding and propagation methods are available."
The worms found today are proof-of-concept code, that is, they are only an attack experiment and have not yet formed a large-scale threat. "As far as I know, this is the first worm against Oracle databases," he said ." Microsoft's SQL Server and open-source MySQL server databases were previously infected by worms.
"This worm is very dangerous, but it predicts a greater potential danger in the future," said Coen blster. This is undoubtedly an alarm for database managers ." (N109)