Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: Latest MS SQL Server vulnerabilities revealed
From: Jeff Moss <jmoss () blackhat com>
Date: Tue, 29 Apr 2003 22:43:51 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cesar and Bugtraq,

If anyone is interested in watching Cesar's talk from Black Hat
Windows, I 
just put it on-line. It is not linked directly from the web site yet,
but 
can be found here:

rtsp://media.blackhat.com/blackhat/bh-usa-win-03/video/BH-WIN-2003-CER
RUDO-NEWMAN.rm

Jeff

At 03:49 PM 4/29/2003 -0700, Cesar wrote:


There are available to download, a new POC tool, paper
and presentation on the latest MS SQL Server bugs.


Hunting Flaws in Microsoft SQL Server Presentation

This presentation was delivered at the Black Hat 2003
Windows Security Conference, and illustrates many new
Microsoft SQL Server vulnerabilities. Improvements
that were made to Microsoft SQL Server in the new SP3
release to fix these vulnerabilities are also
discussed. Also, a new tool to exploit the SQL
Injection techniques described in the paper
Manipulating Microsoft SQL Server Using SQL Injection
was also introduced.

http://www.appsecinc.com/news/briefing.html#hunting


-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
Comment: Please Verify Key IDs & Fingerprints

iQA/AwUBPq9i1FqBFadmyozQEQIVVwCgxEpnjguie9INP7hVZkYbnZDC94cAn3hM
HOgzW79aoc2MmZHt0fdtLQ4H
=AAYH
-----END PGP SIGNATURE-----

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]