Seven Deadliest Microsoft Attacks

Chapter 3. SQL Server – Stored Procedure Attacks

Information in this Chapter

How Stored Procedure Attacks Work

Dangers Associated with a Stored Procedure Attack

The Future of Stored Procedure Attacks

Defense against Stored Procedure Attacks

The acronym SQL actually stands for Structured Query Language, which is the standard programming language utilized to access and manipulate databases. For example, from a security perspective, you probably have heard of “SQL Injection”^[A] as a form of attack against SQL databases. Because of the name SQL Server, you may think that this is a Microsoft-specific vulnerability; however, the SQL in SQL Injection is actually referring to the language rather than Microsoft's product. This makes it a valid ...

Get Seven Deadliest Microsoft Attacks now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Seven Deadliest Microsoft Attacks by Rob Kraus, Naomi Alpern, Brian Barber, Mike Borkin

Chapter 3. SQL Server – Stored Procedure Attacks

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly