What is trying to do NV32ts and its SQL injection?

Question

What is trying to do NV32ts and its SQL injection?

Recently, I get a few attacks on my site using the NV32ts User-Agent.

All of them are some variants of the following injection attacks against the querystring variable (where 99999 represents the actual value for the request, the attack is added to the value):

(For convenience, I have urldecoded the following attacks)

999999 And char(124)+(Select Cast(Count(1) as varchar(8000))+char(124) From [sysobjects] Where 1=1)>0

or

999999' And char(124)+(Select Cast(Count(1) as varchar(8000))+char(124) From [sysobjects] Where 1=1)>0 and ''='

or

999999' And char(124)+(Select Cast(Count(1) as varchar(8000))+char(124) From [sysobjects] Where 1=1)>0 and ''='

I believe sysobjects has something to do with the main Sql Server database, but I can’t understand what they are trying to accomplish.

Edit: I now saw these same things with two different user agents:

NV32ts
Mozilla/4.0 (; MSIE 7.0; Windows NT 5.1; InfoPath.1;.NET CLR 1.1.4322;.NET CLR 2.0.50727;.NET CLR 3.0.04506.30;.NET CLR 3.0.04506.648; CLR 3.5.21022; WWTClient2)

+5

security sql-injection sql-server

Nathan 12 . '09 19:39

3

, , SQL Injection.

Char (124) | . , (, 1428 |). 0 > 0 , | 1428 | int.

, SQL Injection, ( ). , , SQL- . , , ( , , , , ).

SQL- , , , . , SQL-.

, .

, , !

+5

Flory 12 . '09 21:01

HP , , , ( ) SQL Injection, sdrawlr. :

0

adinas May 31 '09 at 6:38

source share

Joel Coehoorn · Accepted Answer · 2009-01-12T19:52:30+0000

, 100%, :

. script -, , sysobjects sql. ( ) . , , script . javascript, (varchar, nvarchar, char, nchar, text) db. , .
, true, , . , sysobjects . : And, Or.

What is trying to do NV32ts and its SQL injection?

More articles: