[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-devel
Subject:    "spi labs": SPI Labs SQL Injection Whitepaper Available
From:       aland () striker ! ottawa ! on ! ca
Date:       2002-01-31 21:06:34
[Download RAW message or body]

  We should double-check SQL && it's use of 'radius_xlat', to ensure
that users can't put SQL meta-characters into an attribute, and
selectively re-write the SQL queries.

  I took a quick look at 'rlm_sql.c', and it doesn't define a function
to escape the magic characters.

  Alan DeKok.


------- Forwarded Message

From: "spi labs" <spilabs@spidynamics.com>
To: <logerror@net-security.org>, <bugtraq@securityfocus.com>,
        <pen-test@securityfocus.com>, <webappsec@securityfocus.com>,
        <news@securiteam.com>, <submissions@packetstormsecurity.org>,
        <webmaster@hideaway.net>
Subject: SPI Labs SQL Injection Whitepaper Available
Date: Tue, 29 Jan 2002 18:02:11 -0800
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.00.3018.1300
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300

    The SPI Labs whitepaper on SQL injection has been released.  It is
available in PDF format from:
http://www.spidynamics.com/papers/SQLInjectionWhitePaper.pdf

Here's the overview:
            SQL injection is a technique for exploiting web applications
that use client-supplied data in SQL queries without stripping illegal
characters first.  Despite being remarkably simple to protect against, there
is an astonishing number of production systems connected to the Internet
that are vulnerable to this type of attack.  The objective of this paper is
to educate the professional security community on the techniques that can be
used to take advantage of a web application that is vulnerable to SQL
injection as well as make clear the correct mechanisms that should be put in
place to protect against SQL injection, as well as input validations
problems in general.

Please send comments and questions to spilabs@spidynamics.com


------- End of Forwarded Message


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/devel.html
[prev in list] [next in list] [prev in thread] [next in thread]