sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-25 19:13:48 +03:00
Code Issues Packages Projects Releases Wiki Activity

added one more level of MSSQL version check (if first fails for some reason)

Browse Source
This commit is contained in:
Miroslav Stampar 2010-12-17 21:01:14 +00:00
parent 07609bfb53
commit b4450c6ddd
3 changed files with 12 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/request/inject.py
View File

@ -468,6 +468,8 @@ def getValue(expression, blind=True, inband=True, error=True, time=True, fromUse
if isinstance(value, basestring): if isinstance(value, basestring):
if value.lower() in ("true", "false"): if value.lower() in ("true", "false"):
value = bool(value) value = bool(value)
elif value.capitalize() == "None":
value = None
else: else:
value = value != "0" value = value != "0"
elif isinstance(value, int): elif isinstance(value, int):

2
plugins/dbms/maxdb/fingerprint.py
View File

@ -134,8 +134,6 @@ class Fingerprint(GenericFingerprint):
if not conf.extensiveFp: if not conf.extensiveFp:
return True return True
kb.dbmsVersion = None
return True return True
else: else:
warnMsg = "the back-end DBMS is not SAP MaxDB" warnMsg = "the back-end DBMS is not SAP MaxDB"

10
plugins/dbms/mssqlserver/fingerprint.py
View File

@ -132,6 +132,16 @@ class Fingerprint(GenericFingerprint):
break break
if not kb.dbmsVersion or kb.dbmsVersion == ["Unknown"]:
for version, check in [\
("2000", "HOST_NAME()=HOST_NAME()"),\
("2005", "XACT_STATE()=XACT_STATE()"),\
("2008", "SYSDATETIME()>0") ]:
result = inject.checkBooleanExpression(check)
if result:
kb.dbmsVersion = [version]
if kb.dbmsVersion: if kb.dbmsVersion:
setDbms("%s %s" % (DBMS.MSSQL, kb.dbmsVersion[0])) setDbms("%s %s" % (DBMS.MSSQL, kb.dbmsVersion[0]))
else: else: