Re: a vulnerability in PostgreSQL - Mailing list pgsql-hackers

From Tatsuo Ishii
Subject Re: a vulnerability in PostgreSQL
Date
Msg-id 20020502175046X.t-ishii@sra.co.jp
Whole thread Raw
In response to Re: a vulnerability in PostgreSQL  (Lincoln Yeoh <lyeoh@pop.jaring.my>)
Responses Re: a vulnerability in PostgreSQL
List pgsql-hackers
> Not tested: but how about the string being
> foo'; DROP TABLE T1; foo
> 
> Would the last ' be eaten up then resulting in no error?

Even the last ' is eaten up, the remaining string is (81a2), which
would cause parser errors since they are not valid SQL, I think.

> Also normally a \ would be quoted by \\ right? Would a foo\ result in an 
> unquoted \ ? An unquoted backslash may allow some possibilities.
> 
> There could be other ways to get rid of the last ', comments etc, so it may 
> not be just 6.5.x.

Please provide concrete examples. I could not find such that case.
--
Tatsuo Ishii


pgsql-hackers by date:

Previous
From: Lincoln Yeoh
Date:
Subject: Re: Search from newer tuples first, vs older tuples first?
Next
From: Jean-Michel POURE
Date:
Subject: Re: PostgreSQL mission statement?