Virus warning (Asprox) not a urban legend

Anything for the public

Moderator: Admin

Virus warning (Asprox) not a urban legend

Postby Jokey Smurf » Thu Jul 24, 2008 10:13 am

The last couple of days a new virus have spread(actually a old, but not seen in this big scale before) , The Asprox botnet uses a SQL-injection attack tool to hack websites and add yet more hijacked PCs to its army http://www.technewsworld.com/story/63846.html



27-06-2008: Microsoft and HP have issued free tools to help determine whether a site is vulnerable to SQL insertion.

SQL insertion is a attack method that exploit the flaw in the programming of a web server communication with a database. There has been a large amount of automated attacks with SQL insertion of this year.

The tools solve three tasks: Discovery, protection and prevention.

To detect vulnerable sites can use HP's tool HP Scrawlr. It gives the tool a URL, which it considers all the links on the site. They checked as to whether we can deploy SQL commands and thus have direct access to the database.

For protection against attacks with SQL-paste can be used UrlScan if version 3.0 is now out of beta. It limits the types of HTTP requests IIS must deal with.

In order to prevent problems can analyze its ASP code with Microsoft Source Code Analyzer for SQL Injection. It tells whether there are security problems in the program.

The tools available for download from HP and Microsoft
taken from https://www.cert.dk/ and translated via google.



HP Scrawlr : http://www.communities.hp.com/securitysoftware/blogs/spilabs/archive/2008/06/23/finding-sql-injection-with-scrawlr.aspx

UrlScan : http://learn.iis.net/page.aspx/473/using-urlscan

Microsoft Source Code Analyzer for SQL Injection : http://support.microsoft.com/kb/954476
Image
Image
Image
User avatar
Jokey Smurf
True Smurf
 
Posts: 645
Joined: Mon Jun 02, 2008 6:10 pm
Location: Denmark-Copenhagen
Has thanked: 41 times
Been thanked: 6 times

Return to Public Smurf forum

Who is online

Users browsing this forum: No registered users and 3 guests

cron