Data Retrieval over DNS in SQL Injection Attacks
This addresses a security vulnerability for database systems, but it is incremental as it builds on existing SQL injection techniques.
The paper tackles the problem of data exfiltration in SQL injection attacks by exploiting DNS resolution to retrieve query results, and demonstrates that attackers can use a modified version of sqlmap to achieve fast and low-profile data extraction when standard methods fail.
This paper describes an advanced SQL injection technique where DNS resolution process is exploited for retrieval of malicious SQL query results. Resulting DNS requests are intercepted by attackers themselves at the controlled remote name server extracting valuable data. Open source SQL injection tool sqlmap has been adjusted to automate this task. With modifications done, attackers are able to use this technique for fast and low profile data retrieval, especially in cases where other standard ones fail.