You are here: silicon.com > Resources > White Papers > Data Management > Data Infrastructure > Database Management

Database Management White Papers

Manipulating Microsoft SQL Server Using SQL Injection

Overview Web applications are becoming more secure because of the growing awareness of attacks such as SQL Injection. However, in large and complex applications, a single oversight can result in the compromise of the entire system. Specifically, many developers and administrators of (web) applications may have a false sense of security because they use stored procedures or mask an error messages returned to the browser. This may lead them to believe that they cannot be compromised by this vulnerability.

Further White Paper Details
Publisher	Application Security	File Format	PDF, requires Acrobat Rdr 5
Date Published	March 2004	Downloads	6
Format	White Papers
Topics	Database Management

Did you find this white paper useful?

Green IT: Reducing your Carbon Footprint with Citrix

Going green has become an imperative, not an option, for companies facing the new reality of balancing business objectives with dwindling environmental resources. Limited energy supply and skyrocketing costs are...

Publisher:
Citrix Systems

Protecting virtual macchines: the "best of Vmworld" approach

By enabling IT managers to move virtual machines (and the applications they host) between physical servers, server virtualization gives them a powerful method for reducing planned downtime and speeding recovery....

Publisher:
Citrix Systems

Security Beyond Corporate Boundaries: Using Citrix Application Delivery to Protect Corporate Information Anywhere Business Happens

Ironclad security has become the Holy Grail for companies looking to protect corporate and customer information at large in the modern enterprise. The move toward greater data distribution -- thanks...

Publisher:
Citrix Systems

The End of Application Deployment: Virtualised Applications Streamline, Secure and Manage Your Business

Hundreds, even thousands, of applications serve as the life blood of each of today's distributed global enterprises - at use in more places and in more ways than ever before....

Publisher:
Citrix Systems

Accelerating Microsoft Windows Vista Migrations with Citrix XenApp

For many organisations, migration to Microsoft Windows Vista is not a question of "if" but "when." This inevitability is causing companies to start asking the difficult questions. This white paper...

Publisher:
Citrix Systems

Three security threats you'll never have heard of

Security expert Wray said although most companies are aware of viruses, worms, Trojans and Denial of Service (DOS) attacks, many IT departments have never heard of such threats as input validation attacks, SQL injection or reverse channel Trojans.

Channel:
Security Strategy

Windows worm now spreading

MSBlast installs the Trivial File Transfer Protocol (TFTP) server, and runs the program to download its program code to the compromised server. Ever since mid-July, when Microsoft announced a vulnerability in a widespread component of Windows...

'Dangerous' Sasser variants already on the loose

The ensuing outbreak resulted in 1,100 computers compromised with Sasser, said Scott Conti, network operations manager for the university. Like the original worm, the three new programs - Sasser.B, Sasser.C and Sasser.D - take advantage of a...

Channel:
Security Strategy

Virus hijacks open source servers

MySpool, which runs a file called spoolcll.exe, enters MySQL servers through a SQL injection vulnerability, copies itself to the directory: "%systemdrive%\appl\develop\mysql\data\" and gives itself a random eight-character file name.

Channel:
Malware
Tags:
myspool,
prevx,
mysql

Minority Report: Mac OS X virus scares

According to security firm Secunia, the vulnerability is due to an error in the processing of file association metadata in ZIP archives and mail messages. Secunia claims the vulnerability can also be exploited automatically via the Mac's default...

Channel:
Malware

Web 2.0 threat looms

XSS is one of the top 10 web application vulnerabilities identified by the Open Web Application Security Project (OWASP), along with injection attacks and malicious file execution. They can however be a major security headache if the third-party...

Featured White Papers

The Role of the x86 Processors in the Virtualized, Energy-Contstrained Datacentre

This IDC White Paper analyzes the latest technology and market developments in the x86 server space, which has been significantly impacted by the spread of virtualization solutions and the rise of energy issues. The paper puts AMD's latest 45nm quad-core AMD Opteron Processor, codenamed "Shanghai," in context in this environment and analyzes its opportunities in the European market.

Publisher:
Advanced Micro Devices (AMD)

Vmware-Disaster Recovery Solutions from Vmware

VMware Infrastructure transforms disaster recovery byproviding you rapid, reliable and cost-effective disasterrecovery:? Makes disaster recovery affordable through consolidationsavings and re-use of existing servers for your disasterrecovery site? Provides rapid recovery that is hardware independent,simpler to backup and recover, and enables quickprovisioning of your disaster recovery site? Simplifies the ability to test thereby enhancing disasterrecovery plan reliability

Publisher:
Vmware

High Level Best Practices in Software Configuration Management

When deploying new software configuration management (SCM) tools, implementers sometimes focus on perfecting fine-grained activities, while unwittingly carrying forward poor, large-scale practices from their previous jobs or tools. The result is a well-executed blunder. This paper promotes some high-level best practices that reflect the authors' experiences in deploying SCM.