[WEB SECURITY] Classification of SQL Injection vulnerabilities
MustLive
mustlive at websecurity.com.ua
Fri Apr 24 12:39:52 EDT 2009
Hello participants of Mailing List.
Let's continue talk about classification of vulnerabilities. After I told
you about Classification of DoS vulnerabilities in web applications
(http://www.webappsec.org/lists/websecurity/archive/2009-02/msg00044.html),
this time I draw your attention to SQL Injection vulnerabilities
Classification of SQL Injection vulnerabilities.
As I wrote in my article Classification of SQL Injection vulnerabilities
(http://websecurity.com.ua/2751/), there are next types of SQL Injection
vulnerabilities:
1. Reflected SQL Injection.
2. Persistent SQL Injection.
You can read entire article at my site (http://websecurity.com.ua/2751/).
Reflected SQL Injection - these are regular SQL Injections, which often
happen in web applications which are working with DB. This is well known
type of SQL Injection.
Persistent SQL Injection - this is new type of SQL Injection, which I found
in December 2008 (in plugin CapCC for WordPress). I wrote article about it
at my site (http://websecurity.com.ua/2743/), which you can read on English
(http://www.google.com/translate?u=http://websecurity.com.ua/2743/&langpair=ua%7Cen&hl=en&ie=UTF8).
This type of SQL Injection less widespread than reflected, but also happens
in web applications. To make an attack in case of this type of SQL
Injection, it’s needed to send to vulnerable web application a request with
SQL commands for execution, which will save in DB. After that they will be
taken from DB and executed (i.e. not right away during request, but during
work process of web application).
It’s needed to send just one request, after that SQL commands will be
executed all the time (while they will be in DB) during work process of the
system. Such SQL Injections are convenient to use for conducting attacks,
when constant execution of some code is needed, e.g. for DoS attacks.
Best wishes & regards,
MustLive
Administrator of Websecurity web site
http://websecurity.com.ua
----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec
Have a question? Search The Web Security Mailing List Archives:
http://www.webappsec.org/lists/websecurity/archive/
Subscribe via RSS:
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA
More information about the websecurity
mailing list