Hi, I am currently testing SQL injection with a web application and MS Access database. I have some difficulties as I do not knowing the comment character for Access Database. In MSSQL I will terminate with -- but this does not work in MS Access. Can someone confirm that SQL injection is feasible with MS Access database and what is the correct comment character to use. thanks Helmut _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Wed Nov 28 2001 - 13:09:10 PST