download
- PDF Paper - DoS Attacks Using SQL WildcardsMD5: 51A158A1E160F74D3C8E54CE364C873B
SHA1:26A40BB5309A61417A7E024AE23A01A653B5A035
summary
DoS Attacks Using SQL Wildcards
This paper discusses abusing Microsoft SQL Query wildcards to consume CPU in database servers. This can be achieved using only the search field present in most common web applications. If an application has the following properties then it is highly possibly vulnerable to wildcard attacks:
1- An SQL Server Backend;
2- More than 300 records in the database and around 500 bytes of data per row;
3- An application level search feature.
As you might notice I have just described 90% of Microsoft SQL Server based CMSs, blogs, CRMs and e-commerce web applications. Other databases could be vulnerable depending on how the applications implement search functionalities although common implementation of the search functionality in SQL Server back-end applications is vulnerable.
Related Applications
- BSQL brute forcer V2Updated version of the Blind SQL Injection Brute Forcer from www.514.es. Works against PostgreSQL, MySQL, MSSQL and Oracle and supports custom SQL Queries.
- BSQL HackerBSQL (Blind SQL) Hacker is an automated SQL Injection Framework / Tool designed to exploit SQL injection vulnerabilities virtually in any database.
- Flash Security
- hoppyHTTP options prober and information disclosure scanner
- How to Detect and Exploit 99% of XSS Vulnerabilities
- Insecure Trends in Web 2.0 Applications
- XSS ShellXSS Shell is a powerful XSS backdoor, in XSS Shell one can interactively send requests and get responses from victim and it allows you to keep the control of session
