In simple terms, SQL Server middleware—such as OLE DB or .NET providers
and ODBC and Java Database Connectivity (JDBC) database access drivers—provides
a connection between an application and a database.The SQL Server middleware
processes application requests and presents them to a back-end database in a
language, structure, or syntax that conforms to the requirements of the database
server, then returns the data to the application.
As far as I'm concerned we'll likely always have SQL Injection around to haunt us. Even though this attack vector has been well-publicized and well-documented for well over a decade (and then some), failure to account for it continues to pop all the time—even in catastrophic places....More