CVE-2006-2081

This Perl script exploits CVE-2006-2081 in Oracle Database by leveraging the DBMS_EXPORT_EXTENSION package to grant or revoke DBA privileges to an unprivileged user. It creates a malicious package that executes arbitrary SQL commands via the ODCIIndexGetMetadata function.

This exploit leverages a privilege escalation vulnerability in Oracle 10g by creating a malicious package that grants DBA privileges to an attacker-controlled user. It abuses the `ODCIIndexGetMetadata` function and `DBMS_EXPORT_EXTENSION.GET_DOMAIN_INDEX_METADATA` to execute arbitrary SQL commands with elevated privileges.

This Metasploit module exploits a SQL injection vulnerability in Oracle DBMS_EXPORT_EXTENSION.GET_DOMAIN_INDEX_METADATA to escalate privileges to DBA. It creates a malicious package and executes arbitrary SQL commands via base64-encoded payloads.