CVE-2009-0981

Oracle Database 11.1.0.7 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-0981. PoCs published by Alexander Kornbrust.

AI-analyzed exploit summary This is a writeup detailing how unprivileged database users can access APEX password hashes in the FLOWS_030000.WWV_FLOW_USERS table due to insufficient access controls. It includes SQL queries to demonstrate the vulnerability and confirms the exposure of sensitive data.

Description

Unspecified vulnerability in the Application Express component in Oracle Database 11.1.0.7 allows remote authenticated users to affect confidentiality, related to APEX. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on reliable researcher claims that this issue allows remote authenticated users to obtain APEX password hashes from the WWV_FLOW_USERS table via a SELECT statement.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Alexander Kornbrust · textlocalmultiple

https://www.exploit-db.com/exploits/8456

View Code ZIP pw:eip

This is a writeup detailing how unprivileged database users can access APEX password hashes in the FLOWS_030000.WWV_FLOW_USERS table due to insufficient access controls. It includes SQL queries to demonstrate the vulnerability and confirms the exposure of sensitive data.

Classification

Writeup 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Oracle APEX 3.0 (optional component of Oracle Database 11.1.0.7)

Auth required

Prerequisites: Access to a database account with minimal privileges (e.g., CONNECT role)

MITRE ATT&CK