[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] New Technique to Exploit Blind SQL Injections in MySQL

To: full-disclosure@xxxxxxxxxxxxxxxxx, websecurity@xxxxxxxxxxxxx
Subject: [Full-disclosure] New Technique to Exploit Blind SQL Injections in MySQL
From: Haxxor Security <h@xxxxxxx>
Date: Tue, 21 Jun 2011 14:26:46 +0200

Hi list,
the last 2 weeks I've been researching a technique to both increase the
speed and reduce the number of requests needed to exploit a blind SQL
injection.
I expect it to be at least 10 times faster than the old benchmark method.

I hope you will find this useful and/or interesting.
http://ha.xxor.se/2011/06/speeding-up-blind-sql-injections-using.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] New Technique to Exploit Blind SQL Injections in MySQL
  - From: R00T_ATI

Prev by Date: [Full-disclosure] Exclusive Interview with Creators of Tcpdump, Wireshark, Winpcap
Next by Date: [Full-disclosure] LulzSec
Previous by thread: [Full-disclosure] Exclusive Interview with Creators of Tcpdump, Wireshark, Winpcap
Next by thread: Re: [Full-disclosure] New Technique to Exploit Blind SQL Injections in MySQL
Index(es):
- Date
- Thread