the-web-application-hackers-handbook

Chapter 9 n Attacking Data Stores 333
Requirement: Retrieve database version string
Oracle: select banner from v$version
MS-SQL: select @@version
MySQL: select @@version
Requirement: Retrieve current database
Oracle: SELECT SYS_CONTEXT(‘USERENV’,’DB_NAME’) FROM dual
MS-SQL: SELECT db_name()
The server name can be retrieved using:
SELECT @@servername
MySQL: SELECT database()
Requirement: Retrieve current user’s privilege
Oracle: SELECT privilege FROM session_privs
MS-SQL: SELECT grantee, table_name, privilege_type FROM
INFORMATION_SCHEMA.TABLE_PRIVILEGES
MySQL: SELECT * FROM information_schema.user_privileges
WHERE grantee = ‘[user]’ where [user] is determined
from the output of SELECT user()
Requirement: Show all tables and columns in a single column of results
Oracle: Select table_name||’
‘||column_name from all_tab_columns
MS-SQL: SELECT table_name+’
‘+column_name from information_schema.columns
MySQL: SELECT CONCAT(table_name,
‘,column_name) from information_schema.columns
Requirement: Show user objects
Oracle: SELECT object_name, object_type FROM user_objects
MS-SQL: SELECT name FROM sysobjects
MySQL: SELECT table_name FROM information_schema.tables
(or trigger_name from information_schema.triggers, etc.)
Continued