Signature Detail

Short Name	HTTP:SQL:INJ:MS-SQL-FUNCTIONS
Severity	Medium
Recommended	Yes
Category	HTTP
Keywords	MS-SQL Function in URL Variable SQL Injection
Release Date	2012/07/12
Update Number	2160
Supported Platforms	di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: MS-SQL Function in URL Variable

This signature detects Microsoft SQL functions being sent in HTTP URL variables. Such activity could be an SQL Command Injection attempt. It could also detect non-malicious references to Microsoft SQL functions, such as in a blog posting, or for websites that use SQL commands in their URL's as a part of that website's normal functionality (not recommended).

References

URL: http://en.wikipedia.org/wiki/SQL_injection
URL: http://msdn.microsoft.com/en-us/library/aa258900(v=sql.80).aspx

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: MS-SQL Function in URL Variable

References