Re: [PLUG] Novell / Suse Evaluation Kit

Aaron Mulder on 8 Jul 2004 12:29:03 -0000

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Novell / Suse Evaluation Kit

From: Aaron Mulder <ammulder@alumni.princeton.edu>

To: plug@lists.phillylinux.org

Subject: Re: [PLUG] Novell / Suse Evaluation Kit

Date: Thu, 8 Jul 2004 08:38:39 -0400 (EDT)

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

Take the apostrophe out of the LUG name. Or try a name like foo'); update SurveyAnswers set questionanswer=1; select * from SurveyAnswers where ('0'='1 Aaron P.S. Okay, you shouldn't do that, but it looks like they have a classic SQL Injection vulnerability. On Thu, 8 Jul 2004, eric@lucii.org wrote: > On Wed, Jul 07, 2004 at 03:41:12PM -0400, JP Toto wrote: > > Sorry if this was already mentioned. In case anyone missed it Novell is > > going a nice deal whereby if you sign up and do a short survey on your web > > site you get free copies of the following: > > > > - SUSE LINUX Standard Server 8.0 (ISO Installation Images) > > - SUSE LINUX 9.1 Professional (Bootable Installation DVD) > > - Ximian Desktop 2.0 Evaluation (ISO Image) > > - Ximian Red Carpet 2.0.2 Evaluation (ISO Image) > > - Novell Linux Services 1.0 (ISO Image & NLS Companion CD) > > - Novell GroupWise for Linux 6.5.1 - Server, Client & Messenger > > - and more... > > > > Link is here: Seems like a pretty nice deal!! > > http://www.novell.com/community/linux/order.php > > > > --- > > JP Toto > > ViceClown@yahoo.com > > jtoto@member.fsf.org > > Great package of freebies! > > Unfortunately, when I go to sign up and click "submit" I see this: > > Couldn't execute query. (dbilib.inc:dbquery) insert into SurveyAnswers > (questionid, userid, questionanswer) values (0,47398,'8'),(1,47398,'7'), > (2,47398,'Yes'),(2,47398,'Philadelphia Linux User's Group').... > > Arrrrrr! > > I'll keep trying though. > > Eric > > -- > # Eric Lucas > # "Oh, I have slipped the surly bond of earth > # And danced the skies on laughter-silvered wings... > # -- John Gillespie Magee Jr. > ___________________________________________________________________________ > Philadelphia Linux Users Group -- http://www.phillylinux.org > Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce > General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug > ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

References:

[PLUG] Novell / Suse Evaluation Kit
From: "JP Toto" <viceclown@yahoo.com>

Re: [PLUG] Novell / Suse Evaluation Kit
From: "eric@lucii.org" <eric@lucii.org>

Prev by Date: Re: [PLUG] Novell / Suse Evaluation Kit

Next by Date: Re: [PLUG] Novell / Suse Evaluation Kit

Previous by thread: Re: [PLUG] Novell / Suse Evaluation Kit

Next by thread: Re: [PLUG] Novell / Suse Evaluation Kit

Index(es):

Date

Thread