Multiple Microsoft SQL Server Vulnerabilities

Discussion in 'other security issues & news' started by Prince_Serendip, Oct 8, 2002.

Thread Status:
Not open for further replies.
  1. Prince_Serendip

    Prince_Serendip Registered Member

    Joined:
    Apr 8, 2002
    Posts:
    819
    Location:
    Canada
    Multiple Microsoft SQL Server Vulnerabilities

    Risk
    High

    Date Discovered
    10-02-2002

    Description
    Microsoft has released a security bulletin reporting multiple vulnerabilities in Microsoft SQL Server.

    The first of these issues is a buffer overflow in SQL Server user authentication. It is possible to corrupt memory with a malformed login request. This may enable an attacker to execute arbitrary code with the privileges of the SQL Server process. Malformed login requests may also cause a denial of service. It is possible to trigger this condition prior to authenticating with the server. This issue affects Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000.

    Read more.....
     
Loading...
Thread Status:
Not open for further replies.