SQL injection

SQL injection is a technique that exploits a security vulnerability occurring in the database layer of an application.

The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed.

It is in fact an instance of a more general class of vulnerabilities that can occur whenever one programming or scripting language is embedded inside another.

Have you read these related articles?

News
Special reports
Hackersblog
Legal IT
Techtionary
Events
Podcasts
TechDealsPro

Microsoft Readies Critical IE7 Patch

Citing the gravity of a critical vulnerability in Internet Explorer 7, which is being exploited by hackers to launch remote code execution ...

Which? Reports Davenport Lyons To legal Watchdog

Reacting to numerous protests from internet users, the consumer rights group Which has complained to the Solicitors Regulatory Authority (SRA) about the ...

Details Of Twitter Hack Disclosed

It seems that Twitter fell prey to possibly the oldest hacking trick, a brute force based dictionary attack that was used to ...

Steer Clear of Pirated Windows 7 Downloads Warns Security Firm

Downloading Windows 7 from unofficial sources online could be a very risky venture according to security vendor Fortify, due to the fact ...

Obama, Spears, CNN & Fox News Suffer in Damaging Twitter Hack

Micro-blogging phenomenon, Twitter, has revealed that 33 of its accounts had been hacked by an individual who had successfully penetrated into the ...

Are you getting value from Virtualisation?

The potential cost benefits of server virtualisation are threatened by the complexity of managing virtual machines. That is the finding from the ...

Teenagers face Jail for Hacking School Grades
Two California teenagers have been charged with hacking into their school computers and changing lackluster grades

Are Chinese hackers more coordinated than conventional wisdom?

Jumper over at the Dark Visitor (a blog which focuses almost excluslively on Chinese hackers) takes issue with Bruce Schneier’s article ...

Another hack to keep an eye on

There’s plenty of word these days about SQL injection (Dancho Danchev’s blog is an excellent reference on this trend).

Targeted attacks follow-up
Maarten Van Horenbeeck did a writeup last year on targeted attacks

Loose apps sink ships

Interesting article about what apps crash in Vista

Government announces new law for increased data sharing

The powers of Government to share data will be increased under new laws announced yesterday. Legislation will introduce a fast-track procedure to ...

Server
It is a computer dedicated to providing one or more services over a computer network, typically through a request-response routine

Pharming
It is a hacker's attack aiming to redirect a website's traffic to another, bogus website

virtual dedicated server

It is a method of partitioning a physical server computer into multiple servers such that each has the appearance and capabilities of ...

Hacking
The art of subtle penetration

Win tickets to Windows Server 2008 seminar (worth £1,024) - 5 must go in the next 7 days!

Win 1 of 5 tickets, for a two-day seminar entitled Windows Server 2008, worth £1024 each. The competition closes on the 13th ...

DATACENTREWORLD 2008

UK’s first dedicated data centre exhibition to take place at Barbican Exhibition Halls on 26th -27th February 2008

Podcast : Managing Passwords Made Easy

Ben Chai of Incomingthought.com interviews Udi Mokadi, discusses how to dynamically protect the administrator passwords for your databases, OS and network ...

£3899 Dell 16-core (4x4) Poweredge R900 Server, 2GB RAM, 36GB SAS

The PowerEdge R900 is powered by the latest quad-core 64-bit Intel Xeon 7300 sequence processors delivering outstanding performance and lower power consumption ...

£175 HP ProLiant DL580 G2 Quad Xeon 4GB RAM

The ProLiant DL580 Generation 2 server is an enterprise class, 4-way server designed for environments that require maximum computing power and robust ...

GBP99.99 Fujitsu Siemens PRIMERGY Econel 100 S2 Dual Core Server
This has to be UK's cheapest Dual core server around and it comes with a full year of Onsite warranty

HP ML115G5 O1214DC 512MB NHP 160, Dual Core Server, £135.12
The HP ProLiant ML115 G5 Server is the perfect first server with essential features for the growing businesses and comes with a ...

Dell PowerEdge T105 AMD Dual Core CPU, £99
The slim and quiet AMD-based T105 is ideal as a first server and versatile enough for most work environments

Posted by Desire Athow on 16 Jan. 2008

Désiré Athow is the Content Editor for ITProportal.com and has been writing tech articles for nearly a decade. You can follow him on Twitter.

Tags: Denial of service, Hacking, Legal issues, Patch management, server

Newsletter:

To become a member of ITProPortal Register here.

SQL injection

Youtube

Twitter

Android