Home > mailing lists

Re: a vulnerability in PostgreSQL - Mailing list pgsql-hackers

From	Tatsuo Ishii
Subject	Re: a vulnerability in PostgreSQL
Date	May 2, 2002 07:52:07
Msg-id	20020502175046X.t-ishii@sra.co.jp Whole thread Raw
In response to	Re: a vulnerability in PostgreSQL (Lincoln Yeoh <lyeoh@pop.jaring.my>)
Responses	Re: a vulnerability in PostgreSQL (Lincoln Yeoh <lyeoh@pop.jaring.my>)
List	pgsql-hackers

Tree view

> Not tested: but how about the string being
> foo'; DROP TABLE T1; foo
> 
> Would the last ' be eaten up then resulting in no error?

Even the last ' is eaten up, the remaining string is (81a2), which
would cause parser errors since they are not valid SQL, I think.

> Also normally a \ would be quoted by \\ right? Would a foo\ result in an 
> unquoted \ ? An unquoted backslash may allow some possibilities.
> 
> There could be other ways to get rid of the last ', comments etc, so it may 
> not be just 6.5.x.

Please provide concrete examples. I could not find such that case.
--
Tatsuo Ishii

pgsql-hackers by date:

From: Lincoln Yeoh
Date: 02 May 2002, 07:42:12
Subject: Re: Search from newer tuples first, vs older tuples first?

From: Jean-Michel POURE
Date: 02 May 2002, 08:21:18
Subject: Re: PostgreSQL mission statement?

Re: a vulnerability in PostgreSQL - Mailing list pgsql-hackers

Previous

Next