acme sql inject
DESCRIPTION
A high level view of SQL injectionTRANSCRIPT
![Page 1: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/1.jpg)
Critical Security ReportFor
ACME Retail Testing Website
SQL Injection VulnerabilityA Brief Demonstration
![Page 2: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/2.jpg)
September 27, 2009.
Beta 1005 testing begins
![Page 3: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/3.jpg)
![Page 4: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/4.jpg)
Testuser
**************
![Page 5: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/5.jpg)
Your Time is running out!
Time Remaining
12:37:59Click here to pay
![Page 6: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/6.jpg)
Could this really happen?
YES !!
![Page 7: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/7.jpg)
Then How?
Standard Query Language (SQL) Injection
![Page 8: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/8.jpg)
What is SQL Injection?
•SQL is a language for communicating with databases
•SQL injection is a database vulnerability
•Allows malicious users to trick a web server to:•Gather information•Modify tables•Run system commands•Upload files
![Page 9: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/9.jpg)
How does it work?
t1.acme.com Data Base
Server
Firewall
Network Security Controls
SQL injection over HTTP
Database returns
Account Passwords
![Page 10: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/10.jpg)
Real example: password capture
![Page 11: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/11.jpg)
Proliferation: The whole network is at risk
sql.acme..comUpload files
Scanning, password cracking
Unauthorized web content
t1.acme..com
![Page 12: Acme Sql Inject](https://reader033.vdocuments.net/reader033/viewer/2022061605/5588fbc9d8b42a391a8b461c/html5/thumbnails/12.jpg)
Remediation
• Immediate– Validation checks on login script– Remove error codes– Audit the database and surrounding systems
• Long Term– Develop SQL hardening standards