HOW I BREAK INTO REDHAT POSTGRESQL DATABASE
Attacking PostgreSQL Database
This is write up in which I’ll explain a vulnerability I recently found, and reported through Redhat Vulnerability Disclosure Program
Vulnerability Explanation: PostgreSQL is a database that comes with MacOS X Lion, as a default standard database. According to wikipedia the majority of Linux distributions have the PostgreSQL in the supplied packages.So besides the regular databases (Oracle,MySQL etc.) there will be times as a penetration tester that we will need to assess and this database.
Network Mapping : Lets say that we have perform a port scan on a server and we have identify that is running a PostgreSQL database at port 5432
Vulnerability Identification : We will try a brute force attack in order to discover any weak credentials that will allow us then to connect to the database.We will open the metasploit framework and we will use the postgres_login scanner.
Penetration Now that we have a valid username and password we can use that to conne…
This is write up in which I’ll explain a vulnerability I recently found, and reported through Redhat Vulnerability Disclosure Program
Vulnerability Explanation: PostgreSQL is a database that comes with MacOS X Lion, as a default standard database. According to wikipedia the majority of Linux distributions have the PostgreSQL in the supplied packages.So besides the regular databases (Oracle,MySQL etc.) there will be times as a penetration tester that we will need to assess and this database.
Network Mapping : Lets say that we have perform a port scan on a server and we have identify that is running a PostgreSQL database at port 5432
Vulnerability Identification : We will try a brute force attack in order to discover any weak credentials that will allow us then to connect to the database.We will open the metasploit framework and we will use the postgres_login scanner.
Penetration Now that we have a valid username and password we can use that to conne…
