SitePoint Sponsor

User Tag List

Results 1 to 4 of 4
  1. #1
    SitePoint Enthusiast WMX's Avatar
    Join Date
    Sep 2008
    Posts
    94
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    What does this URL attempt to do?

    What exactly is someone attempting by accessing this url on my site?
    Code:
    /?;DECLARE @S CHAR(4000);SET @S=CAST(0x4445434 <snipped about 1200 chars> 736F72 AS CHAR(4000));EXEC(@S);
    Obviously they are trying to set a variable and execute the contents. But what are they attempting exactly and under what conditions would it be successful? Thanks
    ~

  2. #2
    Programming Team silver trophybronze trophy
    Mittineague's Avatar
    Join Date
    Jul 2005
    Location
    West Springfield, Massachusetts
    Posts
    17,290
    Mentioned
    198 Post(s)
    Tagged
    3 Thread(s)
    I'm sure the answer is in the "snipped about 1200 chars".
    I'm also sure the code is obfuscated. To see what it "tranlates" to, if you're willing to take the chance (carefully weigh the risk against your curiosity), run the code without the exec(). Instead try changing that to echo(@s) - PHP, or document.write(@s) - javascript.

  3. #3
    SitePoint Addict
    Join Date
    Dec 2007
    Posts
    358
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    This may be successful when your site has SQL injection. For example, when it queries database for content which corresponds current URL and the URL is not escaped then you may have SQL injection.
    I'm creating trouble-free Apache, PHP, MySQL installer, WITSuite,
    and use it to setup my development environment.
    Demo, support, contact. Questions?

  4. #4
    SitePoint Wizard silver trophy Crazybanana's Avatar
    Join Date
    Mar 2003
    Location
    In tha fruit cellar
    Posts
    1,379
    Mentioned
    32 Post(s)
    Tagged
    1 Thread(s)
    yep it looks like a SQL injection attack. by appending the string to a url request they can be able to modify the field values of your database table to include the following string
    Who's to doom when the judge himself is dragged before the bar



Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •