How to evade white spaces in a SQL injection
From: Falcifer (falcifer2001_at_yahoo.es)
Date: 03/25/04
- Previous message: H D Moore: "Re: Pen-tester's analysis of .NET security?"
- Next in thread: Jeff Bryner: "Re: How to evade white spaces in a SQL injection"
- Reply: Jeff Bryner: "Re: How to evade white spaces in a SQL injection"
- Reply: Javier Fernandez-Sanguino: "Re: How to evade white spaces in a SQL injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: pen-test@securityfocus.com Date: Thu, 25 Mar 2004 14:00:08 +0100
Hi,
I've one aplication coded on asp with a login form and the only
character that it validates its the withe space.
Can i perform a sql injection on it? how?
Thanks
PD: the DBMS its SQL server
---------------------------------------------------------------------------
You're a pen tester, but is google.com still your R&D team?
Now you can get trustworthy commercial-grade exploits and the latest
techniques from a world-class research group.
www.coresecurity.com/promos/sf_ept1
----------------------------------------------------------------------------
- Previous message: H D Moore: "Re: Pen-tester's analysis of .NET security?"
- Next in thread: Jeff Bryner: "Re: How to evade white spaces in a SQL injection"
- Reply: Jeff Bryner: "Re: How to evade white spaces in a SQL injection"
- Reply: Javier Fernandez-Sanguino: "Re: How to evade white spaces in a SQL injection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
