Bala Neerumalla works as a security software developer at Microsoft. He specializes in finding application security vulnerabilities.
SQL Security: New SQL Truncation Attacks And How To Avoid Them
Exploits using SQL injection have drawn a lot of attention for their ability to get through firewalls and intrusion detection systems to compromise your data layers. Whether it's a first-order or second-order injection, if you look at the basic code pattern, it is similar to any other injection issue where you use untrusted data in the construction of a statement.
Bala Neerumalla - November 2006