[Full-disclosure] sql_2005_inj 0.2 Final Code By kook1991
Trace
bugtrace at gmail.com
Sat Feb 14 11:34:53 GMT 2009
sql_2005_inj 0.2 Final Code By kook1991
[Sql 2005 Injector Updated by kook
E-Mail:7c7c7c7 at gmail.com<E-Mail%3A7c7c7c7 at gmail.com>]
[1] What's Sql 2005 Injector?
http://www.pcsec.org/archives/sql-2005-inj-gui.html Updated
[2]What's it can do?
It's used to Sql injection MSSQL 2005 & 2008.
[3]What is its working theory?
Please Read:
http://www.pcsec.org/archives/SFX-SQLi-A-new-SQL-injection-technique-for-MSSQL-dumps-a-table-in-one-request.html
[4]How to use?
Example Url:
http://localhost/newsview.asp?id=0/**/union/**/select/**/1,2,3,4,5,6,[k],8
Replace the field which can be displayed on the page with [k].
Download:
http://www.pcsec.org/UPLOAD/2009/2/sql_2005_inj_0.2_Final.zip
Read More:
http://www.pcsec.org/archives/sql_2005_inj-02-Final-Coded-By-kook1991.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20090214/fcd59269/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.