sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-02-03 13:14:13 +03:00
Code Issues Packages Projects Releases Wiki Activity

more updates regarding Sybase

Browse Source
This commit is contained in:
Miroslav Stampar 2011-02-20 16:28:48 +00:00
parent cc47737c44
commit 67ec691eb1
2 changed files with 51 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
plugins/dbms/sybase/enumeration.py
View File

@ -155,3 +155,50 @@ class Enumeration(GenericEnumeration):
break
return kb.data.cachedDbs
def getPrivileges(self, *args):
warnMsg = "on Sybase it is not possible to fetch "
warnMsg += "database users privileges, sqlmap will check whether "
warnMsg += "or not the database users are database administrators"
logger.warn(warnMsg)
users = []
areAdmins = set()
if conf.user:
users = [ conf.user ]
elif not len(kb.data.cachedUsers):
users = self.getUsers()
else:
users = kb.data.cachedUsers
for user in users:
if user is None:
continue
isDba = self.isDba(user)
if isDba is True:
areAdmins.add(user)
kb.data.cachedUsersPrivileges[user] = None
return ( kb.data.cachedUsersPrivileges, areAdmins )
def searchDb(self):
warnMsg = "on Sybase searching of databases is not implemented"
logger.warn(warnMsg)
return []
def searchTable(self):
warnMsg = "on Sybase searching of tables is not implemented"
logger.warn(warnMsg)
return []
def searchColumn(self):
warnMsg = "on Sybase searching of columns is not implemented"
logger.warn(warnMsg)
return []

5
xml/queries.xml
View File

@ -497,7 +497,10 @@
<blind/>
</passwords>
<privileges/>
<roles/>
<roles>
<inband query="SELECT name, srid FROM master..syslogins, master..sysloginroles" condition="name"/>
<blind/>
</roles>
<dbs>
<inband query="SELECT name FROM master..sysdatabases"/>
<blind/>