| Author |
 Topic  |
|
karn
Starting Member
14 Posts |
 Posted - 05/08/2006 : 03:42:40
|
quote:
Originally posted by Merkin
That is too much of an ask for someone to put it all into a forum post.
The basic answer is :
1. Know SQL really really well
2. See what you can exploit.
A book could be written on it, but I don't have the time right now.
If you have the task of recommending to the developers how they should test and secure thier app, then you are in a position I do not envy. You should tell them to read this thread, and look at www.sqlsecurity.com
Failing that, you could hire someone to do an audit on it. This would be made quicker by supplying source code.
Damian
"A foolish consistency is the hobgoblin of little minds." - Emerson
Yes, I am required to suggest improvements in the structure & security of db to the dev. team - for which I have gathered necessary informations from this forum n others. I will check the link you have provided n refer it to the team as well.
However, if you could recommend any book pertaining to my existing unsolved concern, please do suggest me.
Thanks |
 |
|
|
karn
Starting Member
14 Posts |
Posted - 05/10/2006 : 06:25:23
|
Hi,
I attempted the followin string on two pages of my site:
---> '; exec master..xp_cmdshell 'iisreset';-- <---
page1-
Forget password page:
---> \\\'; exec master..xp_cmdshell \\\'iisreset\\\';-- <---
Error:Login id not valid in this section.
page2-
login page:
Incorrect Username or Password
---
I think that the first one should have worked but it didn't.
I dont understand reason behind the second result. Could it be because, the userid input is the form of email address? |
|
|
|
spirit1
Cybernetic Yak Master
Slovenia
11741 Posts |
Posted - 05/10/2006 : 06:27:54
|
try
'; exec master..xp_cmdshell ''iisreset'';--
Go with the flow & have fun! Else fight the flow 
Blog thingie: http://weblogs.sqlteam.com/mladenp
|
|
|
|
karn
Starting Member
14 Posts |
|
|
spirit1
Cybernetic Yak Master
Slovenia
11741 Posts |
|
|
karn
Starting Member
14 Posts |
Posted - 05/10/2006 : 06:56:43
|
| umm, no. Acunetix says the page might be susceptible to injection. |
|
|
|
MonikaLec
Starting Member
1 Posts |
Posted - 04/18/2012 : 02:49:17
|
Hello all,
If you are interested in the topic connected with SQL Injection, you can download the teaser of new Hakin9 Magazine in which there are few articles about the topic I've mentioned.
This is the link: unspammed and the only thing that you have to do is to register on this website on free account. Enjoy. |
|
|
|
Topic |
|
Security Testing: SQL Injection
