|Topic:||Error in ADODB OCI8/MSSQL drivers allows SQL injection vulnerability|
|Severity/Risk:||Critical (only servers using Oracle and MS SQL databases)|
|Reported by:||Sam Moffatt|
|Solution:||upgrade to latest weekly build or 1.9.6|
Sam Moffatt discovered a potential problem in the way ADODB library is quoting special characters when the database engine is using Sybase style quoting.