Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Bypassing Oracle dbms_assert
Jul 28 2006 02:20PM
David Litchfield (davidl ngssoftware com)
> I never claimed that dbms_assert is insecure nor do I recommend using
> dbms_assert in this (insecure) way with three consecutive quotes. My
> samples show only the generic concept of bypassing dbms_assert.
Sorry to be pedantic but this is not a generic way (concept) of bypassing
[ more ]
Copyright 2010, SecurityFocus