1417 matches found
Remote code execution
A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'...
CVE-2019-1068
CVE-2019-1068 is a remote code execution vulnerability in Microsoft SQL Server triggered by incorrect handling of internal functions. The CVE is publicly documented with CVSS2/3 scores (6.5/8.8) and is linked to Microsoft security updates KB4505222/KB4505224 (and related KBs) addressing SQL Serve...
CVE-2019-1068
A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions, aka 'Microsoft SQL Server Remote Code Execution Vulnerability'...
Security Updates for Microsoft SQL Server (Uncredentialed Check) (July 2019)
The Microsoft SQL Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who...
Security Updates for Microsoft SQL Server (July 2019)
The Microsoft SQL Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who...
Microsoft SQL Server 2016 SP1 GDR Remote Code Execution Vulnerability (KB4505219)
This host is missing a critical security update according to Microsoft KB4505219 SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft SQL Server Remote Code Execution Vulnerability (KB4505224)
This host is missing an important security update according to Microsoft KB4505224 SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Microsoft SQL Server 2016 SP2 GDR Remote Code Execution Vulnerability (KB4505220)
This host is missing a critical security update according to Microsoft KB4505220 SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
KB4505217 - Description of the security update for SQL Server 2014 SP2 GDR: July 9, 2019
KB4505217 - Description of the security update for SQL Server 2014 SP2 GDR: July 9, 2019 Summary A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who successfully exploited this vulnerability could execu...
Microsoft SQL Server Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who successfully exploited this vulnerability could execute code in the context of the SQL Server Database Engine service account. To exploit the...
KB4505218 - Description of the security update for SQL Server 2014 SP3 GDR: July 9, 2019
KB4505218 - Description of the security update for SQL Server 2014 SP3 GDR: July 9, 2019 Summary A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who successfully exploited this vulnerability could execu...
KB4505224 - Description of the security update for SQL Server 2017 GDR: July 9, 2019
KB4505224 - Description of the security update for SQL Server 2017 GDR: July 9, 2019 Summary A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who successfully exploited this vulnerability could execute...
KLA11517 ACE vulnerability in Microsoft SQL Server
Remote code execution vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1068 Related products Microsoft-SQL-Server CVE list CVE-2019-1068 high KB list 4505217 4505220 4505219 4505221 4505222...
Microsoft SQL Server CVE-2019-1068 Remote Code Execution Vulnerability
Description Microsoft SQL Server is prone to a remote code-execution vulnerability. Successful exploits can allow attackers to execute arbitrary code within the context of the SQL Server Database Engine service account. Failed exploit attempts may result in a denial-of-service condition...
Transaction Log Backup Job for Microsoft SQL Server with AlwaysOn Availability Groups fails after installing CU15 for SQL Server 2017
Challenge When utilizing Always On Availability Groups on a Windows Server Failover Cluster using Microsoft SQL Server 2017 and after installing Cumulative Update package 15 CU15 for SQL Server 2017, Veeam Transaction Log Backup Jobs may fail with the following error message in the the statistics...
Hackers Infect 50,000 MS-SQL and PHPMyAdmin Servers with Rootkit Malware
Cyber Security researchers at Guardicore Labs today published a detailed report on a widespread cryptojacking campaign attacking Windows MS-SQL and PHPMyAdmin servers worldwide. Dubbed Nansh0u , the malicious campaign is reportedly being carried out by an APT-style Chinese hacking group who has...
Information disclosure
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'...
Microsoft SQL Server CVE-2019-0819 Information Disclosure Vulnerability
Description Microsoft SQL Server is prone to an information-disclosure vulnerability. An attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SQL Server 2017 for x64-based Systems Recommendations Block external access at...
KLA11477 OSI vulnerability in Microsoft SQL Server
An information disclosure vulnerability in Microsoft SQL Server Analysis Services can be exploited remotely via specially crafted query to obtain sensitive information. Original advisories CVE-2019-0819 Related products Microsoft-SQL-Server CVE list CVE-2019-0819 warning KB list 4494351 4494352...
Security Updates for Microsoft SQL Server (May 2019)
The Microsoft SQL Server installation on the remote host is missing a security update. It is, therefore, affected by an information disclosure vulnerability that exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions. An attacker who successfully exploit...