exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

MS-SQL CLR Stored Procedure Proof Of Concept
Posted Oct 11, 2010
Authored by Michael Schierl

Microsoft SQL Server supports so called CLR Stored Procedures which are written in a .NET language and are run directly inside MS SQL Server. If an hijacked account has appropriate permissions, it can be used to run a native payload (inject native code into a new thread) or to tunnel a TCP connection or a shell via the SQL port (needed if the database server is properly firewalled). They can also be combined to tunnel a reverse_tcp payload. Additional permissions, like xp_cmdshell, are not required. This file is a proof of concept that demonstrates this ability.

tags | exploit, shell, tcp, proof of concept
MD5 | b4742f2d5c678a6bb59a0a83aa1bd65c
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Open Source Spyware Makes It On The Google Play Store
Posted Aug 22, 2019

tags | headline, malware, phone, google, spyware
MoviePass Database Exposes 161 Million Records
Posted Aug 22, 2019

tags | headline, hacker, privacy, database, data loss
Vast Majority Of Newly Registered Domains Are Malicious
Posted Aug 22, 2019

tags | headline, dns, cybercrime, fraud
Backdoor Found In Utility For Linux, Unix Servers
Posted Aug 22, 2019

tags | headline, hacker, flaw, backdoor, conference
Instagram Asks Researchers To Check Out Checkout Feature
Posted Aug 21, 2019

tags | headline, hacker, facebook, social
Researcher Publishes Second Steam Zero Day
Posted Aug 21, 2019

tags | headline, hacker, flaw, zero day
Capital One Hacker Requests Release From Jail
Posted Aug 21, 2019

tags | headline, hacker, privacy, bank, data loss, fraud
Google And Mozilla Move To Stop Kazakhstan Snooping
Posted Aug 21, 2019

tags | headline, government, privacy, google, mozilla, firefox, cryptography
First Half Of 2019 Sees 4,000 Data Breaches Exposing 4B Records
Posted Aug 20, 2019

tags | headline, hacker, privacy, data loss, flaw
Apple Reopens Security Flaw In Latest iOS Version
Posted Aug 20, 2019

tags | headline, phone, flaw, apple
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close