Voyager (computer worm)

Voyager (computer worm)

The Voyager worm is a computer worm that was posted on the Internet on October 31, 2005, and is designed to target Oracle databases.

Known variants

* First, non-malicious, example October 31, 2005
* Second example December 29, 2005 which attempts to stop remote Oracle listeners on machines that have not been properly secured.

Aliases

Affected platforms

* Any Operating System running Oracle Databases

Actions

The October 31 variant has a harmless payload, but could easily be modified.

The December 29, 2005 version attempts to create private database links in affected databases, but the procedure to spread is missing. If activated, it will grant DBA to PUBLIC. An AFTER LOGON trigger may run which performs a Google search for its own code. The worm code tries to mail the username and password hashes to larry@oracle.com and oracle@. It tricks the listener to reset the password for a well known database user. The clear intention is to increase the chances of successfully creating a private link to the database.

* Application Security Inc. (2006). [http://www.appsecinc.com/resources/alerts/oracle/2006-01A.shtml "New Oracle Voyager Worm Variant"] . Retrieved Jan. 11 2006.

Spread

The October 31 variant tries to find other Oracle databases in the same subnet and uses private database links to connect to remote databases. The December 29 variant was posted incomplete, without a spreading mechanism.

Outbreaks

# October 31, 2005 – First posted on the Internet
# December 29. 2005 – Malicious variant (incomplete) posted on the Internet

External links

* [http://www.oracle.com/technology/deploy/security/db_security/index.html Database Security (Oracle Corp)]
* [http://www.oracle.com/technology/deploy/security/pdf/twp_security_checklist_db_database.pdf Security Checklist (Oracle Corp)] (pdf file)
* [http://www.appsecinc.com/resources/alerts/oracle/2006-01A.shtml Voyager worm described] at Application Security Inc.
* [http://www.red-database-security.com/advisory/oracle_worm_voyager.html Analysis Voyager worm] at Red-Database-Security GmbH


Wikimedia Foundation. 2010.

Игры ⚽ Поможем решить контрольную работу

Look at other dictionaries:

  • Voyager — may refer to:In technology*LG Voyager, a mobile phone model manufactured by LG Electronics *NCR Voyager, a computer platform produced by NCR Corporation *Voyager (computer worm), a computer worm affecting Oracle databases *Voyager (library… …   Wikipedia

  • GameLine — The CVC GameLine (Control Video Corporation) was a cartridge for the Atari 2600 which could download games using a telephone line.In the early 1980s a cable pioneer named William von Meister was looking for a way to use his innovative modem… …   Wikipedia

  • November 5, 2003 — November 5, 2003= * United States Politics : Democratic intel memo by staff disturbs the US Senate. Senator Zell Miller (D GA) states heads should roll over the memo of the Senate Select Committee on Intelligence that outlines a strategy to… …   Wikipedia

  • November 2003 — November 2003: January – February – March – April – May – June – July – August – September – October – November – December Events See Also: Iraq Timeline Liberian Crisis North Korean Crisis Hutton Inquiry Bloody …   Wikipedia

  • Optimus Prime — is a fictional character from the Transformers franchise. Prime is the leader of the autobots, a faction of transforming robots from the planet Cybertron. The autobots are constantly waging war against a rival faction of transforming robots… …   Wikipedia

  • telescope — /tel euh skohp /, n., adj., v., telescoped, telescoping. n. 1. an optical instrument for making distant objects appear larger and therefore nearer. One of the two principal forms (refracting telescope) consists essentially of an objective lens… …   Universalium

  • Star Trek VI: The Undiscovered Country — Theatrical release poster by John Alvin Directed by Nicholas Meyer …   Wikipedia

  • NASA insignia — NASA insignias NASA meatball insignia 1959–82 and 1992–present …   Wikipedia

  • Star Trek: The Next Generation (pinball) — Star Trek: The Next Generation Manufacturer Williams Release date November 1993 …   Wikipedia

  • Reginald Barclay — Star Trek character|if=|Title = Reginald Barclay bgcolor = #ccccff Caption = deletable image caption Lieutenant Reginald E. Barclay, III Species = Human Gender = Male Planet = Earth Affiliation = Starfleet Posting = USS Zhukov USS Enterprise D… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”