[WASC-WHID] WHID 2011-59: Oracle's Sun.com Hit Along with MySQL.com in SQL Injection Attack

WASC Web Hacking Incidents Database wasc-whid at lists.webappsec.org
Mon Apr 25 09:12:17 EDT 2011


*Entry Title: *WHID 2011-59: Oracle's Sun.com Hit Along with MySQL.com in
SQL Injection Attack
*WHID ID: *2011-59
*Date Occurred: *March 29, 2011
*Attack Method: *SQL Injection
*Application Weakness: *Improper Input Handling
*Outcome: *Leakage of Information
*Attacked Entity Field: *Technology
*Attacked Entity Geography: *USA
*Incident Description: *The hackers who compromised MySQL.com also targeted
Sun.com with a SQL injection attack, exposing database names and email
addresses.
*Mass Attack: *No
*Reference: *
http://www.eweek.com/c/a/Security/Oracles-Suncom-Hit-Along-with-MySQLCom-in-SQL-Injection-Attack-727118/
*Attack Source Geography:*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/wasc-whid_lists.webappsec.org/attachments/20110425/948b2b0a/attachment-0003.html>


More information about the wasc-whid mailing list