Answer / reva ram sahu

SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.

Answer / a

It's a secuity vulnerability that occurs between the
database layer of an application.

Which command is used for user defined error messages?

0 Answers  

---

what’s the difference between Covering Indexes and Clustered Indexes ? how to use clustered index small ?

0 Answers  

---

what is performance tunning in sql server ? explain.

1 Answers   Thomson Reuters,

---

Explain what role entity and relationship play in an ER diagram.

0 Answers  

---

Explain relational data?

0 Answers  

---

How to provide values to user defined function parameters?

0 Answers  

---

How to disable a login name in ms sql server?

0 Answers  

---

How can I enforce to use particular index?

1 Answers   Symphony,

---

what are the Prerequisites for Replication?

1 Answers   IBM,

---

What are the types of table?

0 Answers  

---

What are the recovery models in sql server 2000?

0 Answers  

---

How to replace the Query Result 'Null Value' with a text ?

0 Answers   MCN Solutions,

---