120, 1/6 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   k1rha
   ¾È³çÇϼ¼¿ä À¥ÀÎÁõ ¸¶½ºÅÍ ¹®Á¦ Ç®ÀÌ ÀÔ´Ï´Ù.

http://www.hackerschool.org/HS_Boards/zboard.php?AllArticle=true&no=125 [º¹»ç]


CTV(column Truncate vurnerability ) Ãë¾àÁ¡À̶ó´Â ¿¹ÀüÀÇ À¯¸í mysql Ãë¾àÁ¡ÀÔ´Ï´Ù.
mysql ¿¡¼­ Ä÷³ Å©±â¸¦ ÁöÁ¤ÇØÁÖ°í Å×À̺íÀ»  ¸¸µé¾úÀ»¶§,
Áï
id varchar(20)
pw varchar(20) °°ÀÌ Å©±â°¡ Á¤ÇØÁ³À»¶§

À̺¸´Ù Å« ¹®ÀÚ¿­ÀÌ µé¾î¿À¸é µÞºÎºÐÀ» Àß¶ó³»°Ô µÇ¾î ÀÖ½À´Ï´Ù. ÇÏÁö¸¸ select ½Ã¿¡´Â À̸¦ ÀÚ¸£Áö ¾Ê°í where Àý¿¡¼­ ºñ±³ÇÏ°Ô µË´Ï´Ù.

admin À̶õ °èÁ¤ÀÌ ÀÌ¹Ì ÀÖÀ»°æ¿ì , admin                        x ·Î °¡ÀÔÇϰԵǸé

select ½Ã¿¡´Â select * from member where id = 'admin                   x' ¸¦ ãÁö¸¸

insert ½Ã¿¡´Â °ø¹é°ú x°¡ ©·Á admin ÀÌ insert µÇ°Ô µÇ´Â ÃëÁöÀÇ ¹®Á¦¿´½À´Ï´Ù.
  Hit : 3180     Date : 2012/09/02 01:43


    
milkgun ¿À¿Ë 2012/09/03