Advanced SQL Injection In SQL Server Applications
SQL Server
Actualizado el 25 de Noviembre del 2015 por Administrador (Publicado el 23 de Enero del 2009)
5.359 visualizaciones desde el 23 de Enero del 2009
Este documento explica con detalle la técnica "SQL Injection", una vulnerabilidad en el nivel de la validación de las entradas a la base de datos.
Abstract
Introduction
Obtaining Information Using Error Messages
Leveraging Further Access
- xp_cmdshell
- xp_regread
- Other Extended Stored Procedures
- Linked Servers
- Custom extended stored procedures
- Importing text files into tables
- Creating Text Files using BCP
- ActiveX automation scripts in SQL Server
Stored Procedures
Advanced SQL Injection
- Strings without quotes
- Second-Order SQL Injection
- Length Limits
- Audit Evasion
Defences
- Input Validation
- SQL Server Lockdown
References
Appendix A - 'SQLCrack' (sqlcracksql)
Abstract
Introduction
Obtaining Information Using Error Messages
Leveraging Further Access
- xp_cmdshell
- xp_regread
- Other Extended Stored Procedures
- Linked Servers
- Custom extended stored procedures
- Importing text files into tables
- Creating Text Files using BCP
- ActiveX automation scripts in SQL Server
Stored Procedures
Advanced SQL Injection
- Strings without quotes
- Second-Order SQL Injection
- Length Limits
- Audit Evasion
Defences
- Input Validation
- SQL Server Lockdown
References
Appendix A - 'SQLCrack' (sqlcracksql)