Microsoft releases SQL Server security tools
MCP Magazine | at | by Mike
Microsoft on Tuesday released the latest beta versions of its Code Analysis Tool and Anti-Cross Site Scripting Library for developers, a critical part of which is a tool to identify vulnerabilities to SQL injection attacks and other incursions.
Both releases come just days after a zero-day flaw impacting SQL Server 2000 and Microsoft Internet Information Services servers emerged.
The flaw, as described by Austria-based SEC Consult advisory, makes it possible for hackers to target the vulnerability remotely on Web sites that link search boxes, customer databases or other Web apps to SQL Server.