Blog Calendar

S	M	T	W	T	F	S
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30
<< September >>
2010

Blog search

RSS and OPML

Blog RSS feed

Tom Muck's blog RSS

OPML list of feeds

RSS Feed

ColdFusion and PHP
Shopping Carts For Adobe Dreamweaver.

Adobe Community Pro

Tom Muck's blog

Previous Post | Next Post

New round of SQL injection attempts

Friday, August 08, 2008 12:08:42 PM

Be on the watch for new SQL injection attempts, coming from China, using an ascii-encoded binary string. Essentially, what it does is find a vulnerable database and append a string to the fields in every table. The string is a closing </title> tag with a script, followed by a comment to hide the rest of the page:

http://www.bloombit.com/Articles/2008/05/ASCII-Encoded-Binary-String-Automated-SQL-Injection.aspx

I put something like this in my application.cfm file to re-rout the attackers temporarily:

<cfif FindNoCase('user>0',cgi.query_string) OR findNoCase('declare',cgi.query_string)
OR findNoCase('EXEC(@',cgi.query_string)>
<cflocation url="http://www.ftc.gov">
</cfif>

Category tags: Dreamweaver, Cartweaver, ColdFusion

Posted by Tom Muck
Add comment | View comments (2) | Permalink | Trackbacks (0) | Digg This

Previous Post | Next Post

Before posting comments or trackbacks, please read the posting policy.

Full Blog Calendar