[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <5.2.1.1.2.20030429222818.03dd5420@mail-1.datamerica.com>
Date: Tue, 29 Apr 2003 22:43:51 -0700
From: Jeff Moss <jmoss@...ckhat.com>
To: Cesar <cesarc56@...oo.com>
Subject: Re: Latest MS SQL Server vulnerabilities revealed
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cesar and Bugtraq,
If anyone is interested in watching Cesar's talk from Black Hat
Windows, I
just put it on-line. It is not linked directly from the web site yet,
but
can be found here:
rtsp://media.blackhat.com/blackhat/bh-usa-win-03/video/BH-WIN-2003-CER
RUDO-NEWMAN.rm
Jeff
At 03:49 PM 4/29/2003 -0700, Cesar wrote:
>There are available to download, a new POC tool, paper
>and presentation on the latest MS SQL Server bugs.
>
>
>Hunting Flaws in Microsoft SQL Server Presentation
>
>This presentation was delivered at the Black Hat 2003
>Windows Security Conference, and illustrates many new
>Microsoft SQL Server vulnerabilities. Improvements
>that were made to Microsoft SQL Server in the new SP3
>release to fix these vulnerabilities are also
>discussed. Also, a new tool to exploit the SQL
>Injection techniques described in the paper
>Manipulating Microsoft SQL Server Using SQL Injection
>was also introduced.
>
>http://www.appsecinc.com/news/briefing.html#hunting
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
Comment: Please Verify Key IDs & Fingerprints
iQA/AwUBPq9i1FqBFadmyozQEQIVVwCgxEpnjguie9INP7hVZkYbnZDC94cAn3hM
HOgzW79aoc2MmZHt0fdtLQ4H
=AAYH
-----END PGP SIGNATURE-----
Powered by blists - more mailing lists