increasing socket timeout in case of time based checks

2024-11-23 01:56:36 +03:00 · 2010-12-05 23:18:16 +00:00 · 2010-12-05 23:18:16 +00:00 · 5189f138d7
commit 5189f138d7
parent 17449754fe
1 changed files with 7 additions and 0 deletions
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@ -347,6 +347,11 @@ def checkSqlInjection(place, parameter, value):
                    # In case of time-based blind or stacked queries
                    # SQL injections
                    elif method == "time":
+                        # Store old value of socket timeout
+                        pushValue(socket.getdefaulttimeout())
+                        # Set socket timeout to 2 minutes as some
+                        # time based checks can take awhile
+                        socket.setdefaulttimeout(120)
                        # Perform the test's request and check how long
                        # it takes to get the response back
                        start = time.time()
@ -358,6 +363,8 @@ def checkSqlInjection(place, parameter, value):
                            logger.info(infoMsg)

                            injectable = True
+                        # Restore old value of socket timeout
+                        socket.setdefaulttimeout(popValue())

                # Restore page template
                if where == 2: