Stranage SQL injections

Question

0.00/5 (No votes)

See more:

I have website as Classic ASP as Front end and SQL Server 2005 as Back end.

But I am facing a very strange SQL injection on my back end.

Some type of CSS with HTML with spamming site is appending their code to my website database with each table and with each varchar type columns.

For e.g.

</title><style>.am1y{position:absolute;clip:rect(405px,auto,auto,405px);}</style><div class=am1y>same day <a href=http://mazzpaydayloans.com >payday loans</a></div>

I Checked My IIS Log It shows me like this

2013-06-09 19:15:54 GET /mypage.asp%3C/title%3E%3Cstyle%3E.axo5{position:absolute;clip:rect(404px,auto,auto,404px);}%3C/style%3E%3Cdiv%20class=axo5%3Eapproval%20%3Ca%20href=http:/mazzpaydayloans.com%20%3Epayday%20loans%3C/a%3E%3C/div%3E - - 204.13.205.99 HTTP/1.1 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.1;+SV1) loginfailure=chance=0&bantime=;+ASPSESSIONIDSSDRRCQQ=EDPHPJGCGLMKOADICKHODKBM - www.mysite.com 404 0 281 543 78

On my this selected ASP Page all SQL queries are parametrized.

But still this issue is persists.

Posted 10-Jun-13 21:09pm

abcdummy123

Add a Solution

Comments

Bernhard Hiller 11-Jun-13 5:12am

According to your log file, the attacker adds that piece of html directly to the URL of an asp page. I haven't seen such an attack yet, and canot imagine how it works.
I'd test the page by entering the URL plus some smaller item like <abc> into a browser and debug the behavior.

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Thanks7872 · Answer 1 · 2013-06-10T22:44:00

Solution 1

I strongly recommend you to refer to below link where i answered the similar question. Though its in ASP.NET,still you can go through very useful tips.That will be beneficial for you in future also.

sql injection in my website which effect my database data[^]

Posted 10-Jun-13 22:44pm

Thanks7872