On 2016-11-25 12:40, Lester Caine lester@... [firebird-support]
wrote:

> Nothing to do with Firebird but can anybody explain why the numbers in
> 'SELECT FIRST 102121121121212 SKIP 3574239239242420' would be a problem
> in MySQL or is it some other vulnerability the original sQL injection
> was trying to hit. I know I need to add limit checks in the code which
> reprocessed the SQL but it quite happily 'white screens' the vast
> majority of MySQL injection attempts so I'm just need to make sure
> there
> is nothing that WOULD affect Firebird adversely.

That number is too big to fit in an int, could explain the problem

BTW: You might want to look for other solutions if you need to skip and
fetch that many records, it is not really efficient ;)