Could a cracker take a look at this 46 minute video: <https://media.ccc.de/v/36c3-10701-select_code_execution_from_using_sqlite> and give us an idea what's going on ? It was presented to the Chaos Computer Club in December last year and I don't remember it being discussed here. "we experimented with the exploitation of memory corruption issues within SQLite without relying on any environment other than the SQL language. [...] How? We created a rogue SQLite database that exploits the software used to open it.Exploring only a few of the possibilities this presents we’ll pwn password stealer backends while they parse credentials files and achieve iOS persistency by replacing its Contacts database…" As far as I can tell, the things it exploits aren't inside SQLite. The vulnerabilities come from an application assuming that anything stored in the database is safe. But I'm retired now and out of touch with current techniques.