Network Security: Detailed info on MS Access SQL injection column enumeration

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

MS Access SQL injection column enumeration

from [RaMatkal x2] Network Security

[Permanent Link]

Subject:	MS Access SQL injection column enumeration
Date:	Sat, 19 Mar 2005 20:33:48 +0000

I am conducting a pen-test on a web app that is vulnerable to SQL injection. The backend database is MS access.....

i have managed to get a list of table names using something like the following:

select Name, from MSysObjects
where  Type=1
 and  Name not like "MSys*";

However, I am struggling to find a way to gather a list of column names from each table which would allow me to read any data from the database...... None of the sql injection papers / tutorials seem to have much to say about Access databases...

Anybody got any ideas?

Thanks in advance...
ramatkal@hotmail.com

_________________________________________________________________ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
MS Access SQL injection column enumeration, RaMatkal x2 <= RE: MS Access SQL injection column enumeration, Jeremy Viegas RE: MS Access SQL injection column enumeration, Jeremy Viegas

Previous by Date:	Is Dynamic WEP Secure Enough?, Jon Smith
Next by Date:	Re: nmap scan results, Alvin Oga
Previous by Thread:	Is Dynamic WEP Secure Enough?, Jon Smith
Next by Thread:	RE: MS Access SQL injection column enumeration, Jeremy Viegas
Indexes:	[Date] [Thread] [Top] [All Lists]