![]() | This article is rated C-class on Wikipedia's
content assessment scale. It is of interest to the following WikiProjects: | |||||||||||||||||||||||||||||||||||
|
Such as regexps, and other ways to clean lint out of the expressions. e.g. /s/[&|<>]//g —Preceding unsigned comment added by 86.146.17.45 ( talk) 14:16, 11 November 2009 (UTC)
This could be a very interesting article and I have already learned a lot from it, but it needs attention:
I'll do what I can later since this looks a very promising article. -- 82.18.240.96 21:01, 3 January 2006 (UTC)
I'm responsible for some parts of the mess here :-) I Suggest:
I think it would be useful to have a page called "Command Injection" which links to "Code Injection" as a redirect. Am I correct in thinking they are the same thing? -- Annmarie westgate 14:24, 12 February 2007 (UTC)
I added the redirect today -- Annmarie westgate 15:55, 13 February 2007 (UTC)
I totally stepped on the first code injection example for two reasons. For one that case is NEVER going to happen in REAL software EVER. At no time will a comment from a web forum be passed to system(). This is not going to happen because there is no absolutely no constructive reason to do this. Also I think that more people have seen HTML than seen the command-line interface.
How do you explain code injection to someone who has never written code? I think that the understanding of code should be a pre-requisite to reading this article.
I wanted to make some improvements to the introductory definition, which read -
Code injection is the exploitation of a computer bug that is caused by processing invalid data. Code injection can be used by an attacker to introduce (or "inject") code into a computer program to change the course of execution.
It's very odd to say "inject code into a computer program" which is very much not what happens with code injection in any case exemplified or any case where I've heard the term used, as the code is not injected into a program but into a _process_, indeed the introduced code is inside data and is injected into the data segment.
Is anyone aware of a case where code itself within a process actually gets modified by an attack as then the term code injection would then very clearly fit the bill?
I had a go at improving it, but I'm concerned that it's now a bit long. What do you think? CecilWard ( talk) 23:26, 25 January 2009 (UTC)
Would like to know whats the difference between Throw away bad characters and Filter out known bads-- seems to be the same thing. Interestingly, "Throw away bad characters" is termed as practical and widely used and the "Filter out known bads" is termed as the worst form of defence. Maybe I am ignorant and don't get it - can somebody please explain?
Hmmm... Personally I view Code Injection as the examples stated, e.g. sql injection, shell injection, php injection etc etc etc - all cases of attacks against a eval()
, sql_query()
, include()
like command being fead with user input.
With the current initial description of Code Injection, one might interpret it as buffer overflows and formation string vulnerabilities (which allows injecting machine code into an application) as being code injection.
Altough these problems are similar (they allow aribitrary code execution), they are fundamentally different because they rely on memory problems rather than the "obviously stupid" eval( $user_input )
.
I think we should clarify the description to NOT include Buffer Overflows and similar memory problems, but I'm not entirely certain. Opinions please! -- Blaufish 19:36, 3 May 2006 (UTC)
I'm thinking the distinguishing feature of this type of attack is that you have one language lurking inside another. SQL in java or PHP. I think the example with "HTML Injection in IE7 Via Infected DLL" is incorrect. That sounds like an attack on the integrity of the message in transit. Like the attacker is substituting the original with a spoofed message. 129.244.241.94 06:47, 13 November 2007 (UTC)
I think that the Buffer overflow is a great example of code injection. I think it is "code injection" regardless of the type of code being injected. In the case of buffer overflows and some format string flaws MACHINE code is being injected. Although the phrase "code injection" does not state if the code is being executed, but in that case code injection wouldn't be a flaw... I'll hold off editing the page for now. —Preceding unsigned comment added by Firealwaysworks ( talk • contribs) 02:42, 25 January 2008 (UTC)
"What happens if arg is set to "10 ; system(\"/bin/echo uh-oh\");" ?"
Should not the encyclopedia answer me that instead of asking? -- Petervaz 13:03, 28 February 2007 (UTC)
The developer thought this would ensure that only blue.php and red.php could be loaded. But as anyone can easily insert arbitrary values in
COLOR
...
How could anyone insert arbitrary values in COLOR
given a
non-editable drop-down list or
listbox as the only means of input? --
208.138.31.76 (
talk) 20:00, 25 January 2008 (UTC)
The end of the article section "Notable code injection programs" is turning into a link farm - if we're going to include some notable programs, we should be sure that they are notable. Perhaps only including programs that have wiki-articles is an easy way of control. AliveFreeHappy ( talk) 19:09, 15 April 2009 (UTC)
I know this is kinda small, but I think it's stupid to put quotes around the word guestbook. First off, most people know what a guestbook is, I think, and putting quotes around it would be like putting quotes around any other random word. It would be like if I had something called a "Web server" and every time I said "Web server" I put quotes around it. I don't think it's appropriate in this context. Also, wikipedia itself says guestbook is one word: http://en.wikipedia.org/wiki/Guestbook which is how i've always seen it, so putting it as two words, and even midsentence capitalizing the word "Guest" seems wrong grammatically. I'm going to change this, and if anyone has strong reason why this page from wikipedia's "Web server" should have it the way it was when I saw it, I guess change it back. 74.203.78.67 ( talk) 14:23, 29 July 2009 (UTC)
I'm surprised that the "code injection" technique of using the Win32 APIs CreateRemoteThread(), VirtualAllocEx(), and WriteProcessMemory() to inject code into a running process is not mentioned here. Or that this sort of technique can be used benevolently to implement a debugger. 174.21.7.133 ( talk) 01:57, 16 September 2009 (UTC)
Data sanitization redirects to this article. What does it mean? -- Abdull ( talk) 20:36, 17 February 2010 (UTC)
It seems wrong to define code injection only as "the exploitation of a computer bug that is caused by processing invalid data". See "Injecting Code Dynamically with the Debugging API" http://msdn.microsoft.com/en-us/library/bb384380.aspx in the .NET framework for an example of legitimate use. — Preceding unsigned comment added by 188.26.163.110 ( talk) 01:05, 8 December 2011 (UTC)
The result of the move request was: Not moved. No supports apart from the nominator, and two opposing comments. Article covers a lot more than just PHP. ( non-admin closure) — Amakuru ( talk) 01:00, 29 December 2013 (UTC)
Code injection → PHP injection – Most of the content deals with PHP code injection, the rest can be merged, as suggested, in other existing articles. DavidBourguignon ( talk) 14:39, 19 December 2013 (UTC)
There is little value of specific PHP Injection article, and there is a point to having a page about injection in general. It's better to clobber a lot of PHP examples. I have made some attempts to move towards having a better article with less PHP stuff. -- Blaufish ( talk) 21:50, 19 December 2013 (UTC)
In the Shell injection section, the consequences of AND list vs OR list seem to be swapped. 'cmd1 && cmd2' does cmd2 iff cmd1 does not return zero (indicating cmd1 has "failed")
This article needs a reference to Bobby Tables. But I don't know where to put it. Jordan Brown ( talk) 18:33, 23 May 2017 (UTC)
Hello fellow Wikipedians,
I have just modified 3 external links on Code injection. Please take a moment to review my edit. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit this simple FaQ for additional information. I made the following changes:
When you have finished reviewing my changes, you may follow the instructions on the template below to fix any issues with the URLs.
This message was posted before February 2018.
After February 2018, "External links modified" talk page sections are no longer generated or monitored by InternetArchiveBot. No special action is required regarding these talk page notices, other than
regular verification using the archive tool instructions below. Editors
have permission to delete these "External links modified" talk page sections if they want to de-clutter talk pages, but see the
RfC before doing mass systematic removals. This message is updated dynamically through the template {{
source check}}
(last update: 5 June 2024).
Cheers.— InternetArchiveBot ( Report bug) 04:50, 10 August 2017 (UTC)
I don't feel knowledgable enough to modify this but I want to report a couple of problems:
In the External Links section: Article "Defending against Injection Attacks through Context-Sensitive String Evaluation (CSSE)" by Tadeusz Pietraszek and Chris Vanden Berghe This link fails because http://chris.vandenberghe.org is no longer valid. I searched for this article in other places but failed to find a valid link to it. I don't want to just delete it because it sounds like a useful article if it can be found.
IMO The Daily WTF regularly reports real-world incidences of susceptibility to code injection in software.
This link doesn't provde a wide range of code injection incidences and should be deleted. It seems to specialize in SQL code injection.
Rjapenga ( talk) 15:58, 30 October 2017 (UTC)Bob Japenga
Hello fellow Wikipedians,
I have just modified 2 external links on Code injection. Please take a moment to review my edit. If you have any questions, or need the bot to ignore the links, or the page altogether, please visit this simple FaQ for additional information. I made the following changes:
When you have finished reviewing my changes, you may follow the instructions on the template below to fix any issues with the URLs.
This message was posted before February 2018.
After February 2018, "External links modified" talk page sections are no longer generated or monitored by InternetArchiveBot. No special action is required regarding these talk page notices, other than
regular verification using the archive tool instructions below. Editors
have permission to delete these "External links modified" talk page sections if they want to de-clutter talk pages, but see the
RfC before doing mass systematic removals. This message is updated dynamically through the template {{
source check}}
(last update: 5 June 2024).
Cheers.— InternetArchiveBot ( Report bug) 20:04, 20 December 2017 (UTC)
❛More and more mocking tools now use code injection to solve the problem of replacing static and non virtual members. Programming language will probably evolve to generate mocking-compatible bytecode. One direction will be to restrict the usage of non virtual members, the other one will be to generate, at least in test situations, a bytecode allowing non-inheritance based mocking.❜
Dependency_inversion_principle
QuentinUK (
talk) 14:59, 10 December 2018 (UTC)