Answer / reva ram sahu

SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.

Answer / a

It's a secuity vulnerability that occurs between the
database layer of an application.

What is policy management?

0 Answers  

---

what are user defined datatypes? : Sql server database administration

0 Answers  

---

Explain external key management in sql server 2008

0 Answers  

---

what is database replicaion? What are the different types of replication you can set up in sql server? : Sql server database administration

0 Answers  

---

What is inline table-value user-defined function?

0 Answers  

---

---

Explain about Normalization?

0 Answers   Infosys,

---

whats new about truncate in sql server 2008?

0 Answers   MedSave Healthcare, Serco,

---

Explain powershell included in sql server 2008?

0 Answers  

---

What is the basic difference between clustered and a non-clustered index?

9 Answers   Infogain,

---

as a part of your job, what are the dbcc commands that you commonly use for database maintenance? : Sql server database administration

0 Answers  

---

What are the types of resultset?

0 Answers  

---

What are the hotfixes and patches in sql server?

0 Answers  

---