Voyager (computer worm)

The Voyager worm is a computer worm that was posted on the Internet on October 31, 2005, and is designed to target Oracle Databases.

Known variants

  • First, non-malicious, example: October 31, 2005.
  • Second example: December 29, 2005; attempts to stop remote Oracle listeners on machines that have not been properly secured.

Affected platforms

Actions

The October 31 variant has a harmless payload, but could easily be modified.

The December 29, 2005 version attempts to create private database links in affected databases, but the procedure to spread is missing. If activated, it will grant DBA to PUBLIC. An AFTER LOGON trigger may run, which performs a Google search for its own code. The worm code tries to mail the username and password hashes to larry@oracle.com and oracle@<random ip>. It tricks the user to reset the password for a well known database user. The clear intention is to increase the chances of successfully creating a private link to the database.

  • "New Oracle Voyager Worm Variant". Application Security Inc. Archived from the original on 2012-11-30. Retrieved January 11, 2006.

Spread

The October 31 variant tries to find other Oracle databases in the same subnet and uses private database links to connect to remote databases. The December 29 variant was posted incomplete, without a spreading mechanism.

Outbreaks

  1. October 31, 2005 First posted on the Internet
  2. December 29, 2005 Malicious variant (incomplete) posted on the Internet
gollark: I have to admit that this *would* be an interesting way to do multi-person-owned shops.
gollark: People have shops and those have brand names and such, but those aren't companies; mostly profit just goes right to the owner and investment is done by loans negotiated between individuals.
gollark: In my opinion, the main reason for that is that companies don't exactly exist here.
gollark: No stock exchange ever actually *happened*, and a centralized one would be easier to do than this.
gollark: I'm not sure how many people would actually bother to develop complex exchange code and such.
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.