WHID 2007-18: Microsoft.com defaced

This incredible story from our friends at Zone-H shed light on one of those defacement attacks, which usually go unexplained. This time an infamous Saudi-Arabian hacker abused SQL injection vulnerability in Internet Explorer Administration Kit web site. And guess what type of SQL injection: A login form SQL injection!

Additional information:

• Microsoft.com defaced [zone-H, May 3 2007]