Penetration Testing mailing list archives

Re: SQL

From: "Andrea secondote?" <btnew () hotmail com>
Date: Thu, 22 Nov 2001 11:56:39 +0100

From: "Kevin Spett" <kspett () spidynamics com>
To:<PEN-TEST () securityfocus com>
Date: Mon, 19 Nov 2001 17:56:06 -0800

There's code like this in the web app:

SQL_Query_String = "SELECT somefield FROM Users WHERE Username = '" &
strUserName & "' AND Password = '" & strPassword & "'"
strValue = SQL_Query(SQL_Query_String) ..

[snip]

Hi I'm a newbie in pen-testing. I read this article and I've found a linktoo. I've tryed this metod on my website which had a url like this:http://www.thesite.com/login.asp. I've check out the error so I've found howwas wrote the field username & password so I've put ' or user like '% etc...and the site answer me with..: Wellcome operator. Ok.But what I don't understand is like taking advantage of this attack forhaving password or account o sensible information.. Can you give me someother informatin about it? Thanks


  .::SNHYPER::.
Security Team Milano

_________________________________________________________________

Scarica GRATUITAMENTE MSN Explorer all'indirizzohttp://explorer.msn.it/intl.asp



----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Current thread:

SQL Gary O'leary-Steele (Nov 19)
- Re: SQL Kevin Spett (Nov 20)
- Re: SQL root (Nov 20)
- Re: SQL neil-at-geekshanty-dot-com (Nov 20)
- Re: SQL Sverre H. Huseby (Nov 20)
- <Possible follow-ups>
- RE: SQL Holmes, Ben (Nov 20)
- RE: SQL Javier Fernández-Sanguino (Nov 20)
- RE: SQL Paul Midian (Nov 20)
- Re: SQL David . French (Nov 20)
- RE: SQL Andy Miller (Nov 21)
- Re: SQL Andrea secondote? (Nov 22)
- RE: SQL rudi carell (Nov 22)
- RE: SQL Javier Fernández-Sanguino (Nov 23)