Signature Detail

Short Name	HTTP:SQL:INJ:SFX-SQLI
Severity	High
Recommended	No
Category	HTTP
Keywords	SFX-SQLI
Release Date	2010/02/17
Update Number	1613
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Select For XML SQL Injection

This signature detects attempts to exploit a known vulnerability against Microsoft MS SQL 2005 server. A successful attack can lead to a full database dump.

References

URL: http://www.kachakil.com/papers/SFX-SQLi-Paper-en.pdf

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Select For XML SQL Injection

References