CVE-2021-35576 PoC — Oracle Database Server 输入验证错误漏洞

Source

https://github.com/emad-almousa/CVE-2021-35576

Associated Vulnerability

Title:Oracle Database Server 输入验证错误漏洞 (CVE-2021-35576)
Description:Oracle Database Server是美国甲骨文（Oracle）公司的一套关系数据库管理系统。该数据库管理系统提供数据管理、分布式处理等功能。 Oracle Database Enterprise Edition Unified Audit in Oracle Database Server 存在输入验证错误漏洞，该漏洞允许具有本地登录权限并通过 Oracle Net 访问网络的高特权攻击者破坏 Oracle Database Enterprise Edition Unified Audit。成功

Description

CVE-2021-35576

Readme

# CVE-2021-35576
CVE-2021-35576


Security Vulnerability to bypass Oracle Unified Audit, details of Proof Of Concept is published here: https://databasesecurityninja.wordpress.com/2022/06/11/cve-2021-35576-bypassing-unified-audit-policy/

CVE details: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35576

File Snapshot


 [4.0K]  /data/pocs/acd930ca5d7251777bb61b52c20a8a7f6d8d8887
└── [ 314]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!