4418 matches found
PT-2024-1712 · Microsoft · Wdac Ole Db Provider For Sql Server +1
Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue is related to insufficient input validation in the Microsoft WDAC OLE DB provider for SQL Server, which can be exploited by a remote attacker...
PT-2024-2023 · Microsoft · Wdac Ole Db Provider For Sql Server +1
Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue is related to a buffer overflow in dynamic memory, which can be exploited by a remote attacker to execute arbitrary code. This can affect the...
PT-2024-1960 · Microsoft · Wdac Ole Db Provider For Sql Server +1
Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue is related to a buffer overflow in dynamic memory, which can be exploited by a remote attacker to execute arbitrary code. This can affect the...
KB5034765: Windows 11 version 22H2 / Windows 11 version 23H2 Security Update (February 2024)
The remote Windows host is missing security update 5034765. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
KB5034833: Windows Server 2008 Security Update (February 2024)
The remote Windows host is missing security update 5034833. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
Microsoft WDAC OLE DB provider for SQL Security Vulnerability
Microsoft OLE DB Provider for SQL Server is an API from Microsoft Corporation that allows access to data from a variety of sources in a unified way. A security vulnerability exists in Microsoft WDAC OLE DB provider for SQL. The following products and versions are affected: Windows 10 Version 22H2...
KB5034769: Windows Server version 23H2 Security Update (February 2024)
The remote Windows host is missing security update 5034769. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
PT-2024-2017 · Microsoft · Wdac Ole Db Provider For Sql Server +1
Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue is related to numerical truncation errors in the Microsoft WDAC OLE DB provider for SQL Server. It allows remote attackers to execute arbitra...
KB5034768: Windows 10 version 1809 / Windows Server 2019 Security Update (February 2024)
The remote Windows host is missing security update 5034768. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
KB5034763: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (February 2024)
The remote Windows host is missing security update 5034763. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
KB5034767: Windows 10 Version 1607 and Windows Server 2016 Security Update (February 2024)
The remote Windows host is missing security update 5034767. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
KB5034830: Windows Server 2012 Security Update (February 2024)
The remote Windows host is missing security update 5034830. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
Microsoft OLE DB provider for SQL Security Vulnerability
Microsoft OLE DB Provider for SQL Server is an API from Microsoft Corporation that allows access to data from a variety of sources in a unified way. A security vulnerability exists in Microsoft WDAC OLE DB provider for SQL. The following products and versions are affected:Windows Server 2019 Serv...
BIT-LIFERAY-2023-33945
SQL injection vulnerability in the upgrade process for SQL Server in Liferay Portal 7.3.1 through 7.4.3.17, and Liferay DXP 7.3 before update 6, and 7.4 before update 18 allows attackers to execute arbitrary SQL commands via the name of a database table's primary key index. This vulnerability is...
dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS)
A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM adversary-in-the-middle attack between the SQL client and the SQL server. This may allow the attacker to stea...
Microsoft and Adobe Patch Tuesday, January 2024 Security Update Review
The first edition of the Microsoft Patch Tuesday for 2024 is now live! Microsoft has released fewer than usual security fixes in this months update. We invite you to join us to review and discuss the details of these security updates and patches. Microsoft Patch Tuesday for January 2024 Microsoft...
KB5033592 - Description of the security update for SQL Server 2022 CU10: January 9, 2024
KB5033592 - Description of the security update for SQL Server 2022 CU10: January 9, 2024 Summary How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information Information about protection and security Summary This...
KB5032968 - Description of the security update for SQL Server 2022 GDR: January 9, 2024
KB5032968 - Description of the security update for SQL Server 2022 GDR: January 9, 2024 Summary How to obtain and install the update More information File information Information about protection and security Summary This security update resolves a vulnerability. To learn more about the...
Vulnerability fixed in Microsoft SQL Server
Microsoft has fixed a vulnerability in SQL Server. A malicious party can exploit the vulnerability to use a Man-in-the-Middle attack to intercept and decrypt, potentially gaining access to the sensitive data in that traffic. Abuse is not easily accomplished and requires the malicious party is in...
Security Updates for Microsoft SQL Server (January 2024) (Remote)
The Microsoft SQL Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - A security feature bypass vulnerability exists. An attacker can exploit this and bypass the security feature and perform unauthorized actions...