Enumerating MS Access DB
Enumerating MS Access DB
Found an injection vulnerability but the site is using Access but there doesn't seem to be anything like the schema tables in MySQL. Is there any way to enumerate the tables other than bruteforce?
Selling invisible pets:
Dogs - 0.5 Bitcoins
Cats - 0.7 Bitcoins
Unicorns - 10 Bitcoins
Chimpanzee - 2 Bitcoins
PM me if you are interested, will ship via priority airmail, will accept escrow services
Dogs - 0.5 Bitcoins
Cats - 0.7 Bitcoins
Unicorns - 10 Bitcoins
Chimpanzee - 2 Bitcoins
PM me if you are interested, will ship via priority airmail, will accept escrow services
Re: Enumerating MS Access DB
Well normally you have to brute force it, but I found this that could work
Code: Select all
SELECT NAME FROM MSYSOBJECT
WHERE TYPE = 1
AND NAME NOT LIKE 'MSYS*'
ORDER BY NAME;
Code: Select all
http://nm1m.blogspot.se/2005/06/ms-access-list-table-names.html
"The best place to hide a tree, is in a forest"
Re: Enumerating MS Access DB
Nice one!
Selling invisible pets:
Dogs - 0.5 Bitcoins
Cats - 0.7 Bitcoins
Unicorns - 10 Bitcoins
Chimpanzee - 2 Bitcoins
PM me if you are interested, will ship via priority airmail, will accept escrow services
Dogs - 0.5 Bitcoins
Cats - 0.7 Bitcoins
Unicorns - 10 Bitcoins
Chimpanzee - 2 Bitcoins
PM me if you are interested, will ship via priority airmail, will accept escrow services