A weakness in the command-and-control infrastructure of one of the major DDoS toolkits, Dirt Jumper, enables them to stop attacks that are in progress. The command and control (C&C) servers can be compromised and, in principle, completely taken over via. SQL injection involves inserting database instructions in unexpected and unprotected places, effectively taking charge of a web application’s database from the outside. The company’s research includes Dirt Jump v.3, Pandora and Di BoT.
Source: https://thehackernews.com/2012/08/security-firm-reveals-flaw-in-dirt.html