any body hear about this?

General Network security, firewalls, port filtering/forwarding, wireless security, anti-spyware, as well as spam control and privacy discussions.
Post Reply
User avatar
denolth2
Regular Member
Posts: 354
Joined: Tue Nov 28, 2000 12:00 am
Location: mushroom forest

any body hear about this?

Post by denolth2 »

ALERT: SQL Injection Attacks via Port 80 and 443!
It's as simple as placing additional SQL commands into a
Web Form input box giving hackers complete access to your
backend systems! Firewalls, Access Controls and IDS don't
stop such attacks because SQL Injections are NOT seen as
intruders. Download this *FREE* white paper from SPI Dynamics!
http://www.spidynamics.com/mktg/sqlinjection13


I'm kind of leery of sites that require you to register to get something that should be free, if it's information.. :O

dentwo....but that's just me I guess.... :o
Top
User avatar
Juggernaut
Senior Member
Posts: 1645
Joined: Fri Aug 11, 2000 12:00 am
Location: Parts Unknown

Post by Juggernaut »

wow

I guess we'll be expecting another patch soon ;)
Image
It can't rain all the time...
Top
User avatar
Susky
Member
Posts: 29
Joined: Tue May 14, 2002 10:11 am

Hmmm

Post by Susky »

I see a notice at the NAI site for the "JS/SQLSpida" worm. It works on port 1443, rather than 443.

Here is a link: http://vil.nai.com/vil/content/v_99499.htm
Top
Post Reply

Return to “Network Security”