SQL Injection Attacks by Example - The Network Security.Org

Dropped here by your search engine? Use the same keyword in the google box below to search this site.

A customer asked that we check out his intranet site, which was used by the company's employees and customers. This was part of a larger security review, and though we'd not actually used SQL injection to penetrate a network before, we were pretty familiar with the general concepts. We were completely successful in this engagement, and wanted to recount the steps taken as an illustration.

"SQL Injection" is subset of the an unverified/unsanitized user input vulnerability ("buffer overflows" are a different subset), and the idea is to convince the application to run SQL code that was not intended. If the application is creating SQL strings naively on the fly and then running them, it's straightforward to create some real surprises.

We'll note that this was a somewhat winding road with more than one wrong turn, and others with more experience will certainly have different -- and better -- approaches. But the fact that we were successful does suggest that we were not entirely misguided.

There have been other papers on SQL injection, including some that are much more detailed, but this one shows the rationale of discovery as much as the process of exploitation. SQL Injection Attacks by Example

More News

HTTPS Cookie-Hijacking Tool CookieMonster Gobbles Personal Data

Anatomy of a botnet

Microsoft patches 8 critical bugs in Windows, Office

Virtualization users should expect more attacks

Threat From DNS Bug Is not Over, Experts Say

Website infection rate triples

How to Use Honeypots to Improve Your Network Security

Microsoft Patch Tuesday Targets 26 Application Flaws

SSL VPNs might not be as secure as you think

8 tips to filter spam effectively

Onus on IP address owner to prove innocence

How to install an SSH Server in Windows Server 2008.

Several vulnerabilities closed in the Linux kernel

8 Best Practices for Encryption Key Management and Data Security

Free Honeypot Client Could Sting Malware

What Firewalls Do & Donot Do

Symantec fingers D Link for bot attacks

WhiteHat: 90% of Sites Still Vulnerable

Red Hat releases free security code

A new type of Bluetooth security

You are browsing the old version of "The Network Security. Org", Please
click here to visit the
new version.

Warning: main(ad_network_213.php) [function.main]: failed to open stream: No such file or directory in /home/thenetw/public_html/news/View.php on line 282

Warning: main(ad_network_213.php) [function.main]: failed to open stream: No such file or directory in /home/thenetw/public_html/news/View.php on line 282

Warning: main(ad_network_213.php) [function.main]: failed to open stream: No such file or directory in /home/thenetw/public_html/news/View.php on line 282

Warning: main() [function.include]: Failed opening 'ad_network_213.php' for inclusion (include_path='.:/usr/lib/php:/usr/local/lib/php:../:../../:../../../:../../../../') in /home/thenetw/public_html/news/View.php on line 282

network security news, articles, tools, links...

The Network Security. Org

More News

Categories