This is a continuation of multiple educational video demonstrations
related to Web application attacks, however this video is focused specifically on database security. This video looks at a Direct Database Access SQL Injection attack. In this attack a non-privileged user is able to exploit a vulnerability that existed in both Oracle 8i and 9i in which the malicious user could grant themselves DBA privileges. Read More