Friday, 25 November 2016

Re: [firebird-support] Overflow problem

 

On 2016-11-25 12:40, Lester Caine lester@lsces.co.uk [firebird-support]
wrote:
> Nothing to do with Firebird but can anybody explain why the numbers in
> 'SELECT FIRST 102121121121212 SKIP 3574239239242420' would be a problem
> in MySQL or is it some other vulnerability the original sQL injection
> was trying to hit. I know I need to add limit checks in the code which
> reprocessed the SQL but it quite happily 'white screens' the vast
> majority of MySQL injection attempts so I'm just need to make sure
> there
> is nothing that WOULD affect Firebird adversely.

That number is too big to fit in an int, could explain the problem

BTW: You might want to look for other solutions if you need to skip and
fetch that many records, it is not really efficient ;)

__._,_.___
Posted by: Mark Rotteveel <mark@lawinegevaar.nl>
Reply via web post Reply to sender Reply to group Start a New Topic Messages in this topic (2)
Have you tried the highest rated email app?
With 4.5 stars in iTunes, the Yahoo Mail app is the highest rated email app on the market. What are you waiting for? Now you can access all your inboxes (Gmail, Outlook, AOL and more) in one place. Never delete an email again with 1000GB of free cloud storage.
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Visit http://www.firebirdsql.org and click the Documentation item
on the main (top) menu.  Try FAQ and other links from the left-side menu there.

Also search the knowledgebases at http://www.ibphoenix.com/resources/documents/

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

.

__,_._,___
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)