Welcome to TechNet Blogs Sign in | Join | Help

Browse by Tags

All Tags » SQL Injection   (RSS)
Monday, December 22, 2008 10:13 AM

More information about the SQL stored procedure vulnerability

Security Advisory 961040 provides mitigations and workarounds for a newly-public post-authentication heap buffer overrun in SQL Server, MSDE, and SQL Express. This blog post goes into more detail about the attack surface for each affected version and
Posted by swiblog | (Comments Off)
Tuesday, June 24, 2008 12:48 PM

New tools to block and eradicate SQL injection

The MSRC released an advisory today that discusses the recent SQL injection attacks and announces three new tools to help identify and block these types of vulnerabilities. The advisory discusses the new tools, the purpose of each, and the way each complements
Posted by swiblog | (Comments Off)
Filed under: ,
Thursday, May 29, 2008 10:20 PM

SQL Injection Attack

(Special thanks to Neil Carpenter for helping out on this blog post) Recent Trends Beginning late last year, a number of websites were defaced to include malicious HTML <script> tags in text that was stored in a SQL database and used to generate
Posted by swiblog | (Comments Off)
Filed under: ,
 
Page view tracker