Alexander's Blog

Sharing knowledge with the global IT community since November 1, 2004

Using SQL Injection to Bypass Security Controls

By
/
On June 9, 2006
/
ad-mania

To demonstrate some of the security issues, Joel Helgeson of Appiant.net has posted a video that shows how he used SQL injection to bypass security controls on a college Web site. In this video he demonstrates how easy this type of attack can be. If you are a Web developer, this is a good reminder for you to test your Web applications thoroughly for security issues.

The video is available on appiant.net’s Web site.

Exploit Video (WMV format – 7.8MB – 3:25 min)
Exploit Fixed (WMV format – 764KB – 37 secs)

Check out this video from Microsoft on SQL Security. It looks at the security architecture of SQL server 2000 and introduces the SQL Server 2005 Security model. It also shows you how to lock down SQL server implementations.

Print đź–¨
  • Facebook
  • Twitter
  • Linkedin
You May Also Like

Leave a Comment

Your email address will not be published. Required fields are marked *

This div height required for enabling the sticky sidebar