Information in this Chapter
- How Stored Procedure Attacks Work
- Dangers Associated with a Stored Procedure Attack
- The Future of Stored Procedure Attacks
- Defense against Stored Procedure Attacks
The acronym SQL actually stands for Structured Query Language, which is the standard programming language utilized to access and manipulate databases. For example, from a security perspective, you probably have heard of “SQL Injection”[A] as a form of attack against SQL databases. Because of the name SQL Server, you may think that this is a Microsoft-specific vulnerability; however, the SQL in SQL Injection is actually referring to the language rather than Microsoft's product. This makes it a valid ...