In this case the comment character serves to remove the trailing single-quote left over from the modified query. Notice the trailing pair of hyphens (-), which specifies to most database servers that the remainder of the statement is to be treated as a comment and not executed. While this attack string results in an error on Oracle and other database servers that do not allow the batch-execution of statements separated by semicolons, on databases that do allow batch execution, this type of attack allows the attacker to execute arbitrary commands against the database. Many database servers, including Microsoft(R) SQL Server 2000, allow multiple SQL statements separated by semicolons to be executed at once. SELECT * FROM items WHERE owner = 'wiley' AND itemname = 'name' In addition, relationships such as PeerOf and CanAlsoBe are defined to show similar weaknesses that the user may want to explore. These relationships are defined as ChildOf, ParentOf, MemberOf and give insight to similar items that may exist at higher and lower levels of abstraction. This table shows the weaknesses and high level categories that are related to this weakness. Variant level weaknesses typically describe issues in terms of 3 to 5 of the following dimensions: behavior, property, technology, language, and resource. That is linked to a certain type of product, typically involving a specific language or technology. Improper Neutralization of Special Elements in Data Query Logic Class level weaknesses typically describe issues in terms of 1 or 2 of the following dimensions: behavior, property, and resource. More specific than a Pillar Weakness, but more general than a Base Weakness. Class - a weakness that is described in a very abstract fashion, typically independent of any specific language or technology.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |