SQL Injection and the “Flintstones/Jetsons” Way to Deal with Licence Plate Cameras
Mon, 03/22/2010 - 5:16pm
 |
    15 years
|
Owned, and not for the better! 
http://blogs.msdn.com/cdndevs/archive/2010/03/22/sql-injecti...
That wouldn't fly for a
That wouldn't fly for a minute here in the states...
Certainly won't fly here in
Certainly won't fly here in the states, though I can come up with many other things to write on that banner (since his SQL attack didn't work)
And I Still Don't Get The Point..!
? ? ?
Nuvi1300WTGPS
I'm not really lost.... just temporarily misplaced!
I think the point is that if
I think the point is that if the SQL injection worked and the camera recording system used the line on the bumper sticker as input, instead of recording his licence plate number it would instead wipe the entire database of recorded licence numbers (drop table).
I have no idea if it would work, but you've got to applaud original thinking!
Humorous spoof
based on wishful thinking. It is unlikely that the camera application program would recognize and process SQL commands in its optical character recognition logic. If it does, there is probably a programmer about to be fired.
Alan - Android Auto, DriveLuxe 51LMT-S, DriveLuxe 50LMTHD, Nuvi 3597LMTHD, Oregon 550T, Nuvi 855, Nuvi 755T, Lowrance Endura Sierra, Bosch Nyon
.
I think the point is that if the SQL injection worked and the camera recording system used the line on the bumper sticker as input, instead of recording his licence plate number it would instead wipe the entire database of recorded licence numbers (drop table).
I have no idea if it would work, but you've got to applaud original thinking!
Thanks for the explanation. The picture got me confused. "DROP DATABASE TABLICE;" just doesn't make any sense to me.
How about Control -Alt
How about Control -Alt -Delete