WebApp Sec mailing list archives
Blind SQL Injection white paper from SPILabs of Spidynamics, Inc
From: "SPI Labs" <spilabs () spidynamics com>
Date: Mon, 8 Sep 2003 01:29:55 -0400
Blind SQL Injection white paper from SPILabs of Spidynamics, Inc [Title] Blind SQL Injection: Are Your Vulnerable? [Abstract] SQL Injection can deliver total control of your server to a hacker giving them the ability to read, write and manipulate all data stored in your backend systems! Despite being remarkably simple to protect against, there are an astonishing number of production systems connected to the Internet "fixed" the problem by hiding error data from the users but were left vulnerable to this type of attack! [Link] http://www.spidynamics.com/whitepapers/Blind_SQLInjection.pdf [Contact Information] spilabs () spidynamics com SPI Dynamics, Inc. 115 Perimeter Center Place N.E. suite 270 Atlanta, GA. 30346 Toll-Free Phone: (866) 774-2700 SPI Dynamics was founded in 2000 by a team of accomplished Web security specialists; SPI Dynamics is the leader in Web application security technology. With such signature products as WebInspect, SPI Dynamics is dedicated to protecting companies' most valuable assets. SPI Dynamics has created a new breed of Internet security products for the Web application, the most vulnerable yet least secure component of online business infrastructure. Copyright (c) 2003 SPI Dynamics, Inc. All rights reserved worldwide.
Current thread:
- Blind SQL Injection white paper from SPILabs of Spidynamics, Inc SPI Labs (Sep 08)