DerScanner
Home / Vulnerability Database / T-SQL : Insecure function
T-SQL

T-SQL : Insecure function

Classification

CWE
CWE-242CWE-676
CWE/SANS Top 25 2011
CWE-676

Overview

The application uses an insecure xp_cmdshell function. This function launches a Windows command shell and executes the command that is provided in the argument string. The developer can not limit the scope of possible commands for a particular user. Any command will be executed with the existing user’s privileges.

References

  1. CWE-242: Use of Inherently Dangerous Function
  2. CWE-676: Use of Potentially Dangerous Function
  3. xp_cmdshell (Transact-SQL) - msdn.microsoft.com
  4. SQL Server Security Blog: xp_cmdshell
  5. SQL Server Security Blog: Using CLR to replace xp_cmdshell for specific tasks - blogs.msdn.microsoft.com
  6. Why We Recommend Against xp_cmdshell - sqlservercentral.com
  7. xp_cmdshell: should it ever be used? - security.stackexchange.com
CRITICAL

DerScanner Severity Score

Do you want to fix T-SQL : Insecure function in your application?

See also

T-SQL

T-SQL : Weak encryption algorithm

T-SQL

T-SQL : Weak hashing algorithm

T-SQL

T-SQL : Weak random number generator