Home > mailing lists

Re: Embedded SQL vulnerability - Mailing list pgsql-general

From	Michael Meskes
Subject	Re: Embedded SQL vulnerability
Date	September 1, 2001 08:50:50
Msg-id	20010901114555.A8789@feivel.fam-meskes.de Whole thread Raw
In response to	Embedded SQL vulnerability (Glen Eustace <geustace@godzone.net.nz>)
List	pgsql-general

Tree view

On Sat, Sep 01, 2001 at 11:12:34AM +1200, Glen Eustace wrote:
> http://cert.uni-stuttgart.de/advisories/apache_auth.php

Is this somehow related to ecpg? I just noticed the term "embedded" in the
subject. :-)

In fact ecpg does have its own function to quote escape characters. It does
not quote \0 but it does quote \' to \'\' and \\ to \\\\.

Michael
--
Michael Meskes
Michael@Fam-Meskes.De
Go SF 49ers! Go Rhein Fire!
Use Debian GNU/Linux! Use PostgreSQL!

pgsql-general by date:

From: A_Schnabel@t-online.de (Andre Schnabel)
Date: 01 September 2001, 08:45:16
Subject: Re: select a random record

From: Gunnar Rønning
Date: 01 September 2001, 09:11:06
Subject: Re: PL/java?

Re: Embedded SQL vulnerability - Mailing list pgsql-general

Previous

Next