4416 matches found
CVE-2002-0642
The registry key containing the SQL Server service account information in Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine MSDE 2000, has insecure permissions, which allows local users to gain privileges, aka "Incorrect Permission on SQL Server Service Account Registry Key...
CVE-2002-0643
The installation of Microsoft Data Engine 1.0 MSDE 1.0, and Microsoft SQL Server 2000 creates setup.iss files with insecure permissions and does not delete them after installation, which allows local users to obtain sensitive data, including weakly encrypted passwords, to gain privileges, aka "SQ...
CVE-2002-0641
The CVE-2002-0641 issue affects Microsoft SQL Server 2000 and MSDE 2000, where a buffer overflow in the BULK INSERT procedure can be triggered by a file name that is too long. Exploitation requires Bulk Admin or Administrator privileges and can allow execution of arbitrary code with system/high p...
CVE-2002-0624
CVE-2002-0624 describes a buffer overflow in the pwdencrypt() password-encryption function in Microsoft SQL Server 2000 (including MSDE 2000) that can allow remote attackers to execute arbitrary code with the SQL Server service account when authenticating via SQL Server Authentication. Public sou...
CVE-2002-0643
The installation of Microsoft Data Engine 1.0 MSDE 1.0, and Microsoft SQL Server 2000 creates setup.iss files with insecure permissions and does not delete them after installation, which allows local users to obtain sensitive data, including weakly encrypted passwords, to gain privileges, aka "SQ...
CVE-2002-0624
Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine MSDE 2000, allows remote attackers to gain control of the database and execute arbitrary code via SQL Server Authentication, aka "Unchecked Buffer in Password Encryption...
CVE-2002-0641
Buffer overflow in bulk insert procedure of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine MSDE 2000, allows attackers with database administration privileges to execute arbitrary code via a long filename in the BULK INSERT query...
CVE-2002-0643
The CVE-2002-0643 issue concerns Microsoft Data Engine 1.0 (MSDE 1.0) and Microsoft SQL Server 2000: the installation creates setup.iss files with insecure permissions and does not delete them after installation, enabling local users to access sensitive data such as the sa password and potentiall...
Security Bulletin MS02-035: SQL Server Installation Process May Leave Passwords on System (Q263968)
-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: SQL Server Installation Process May Leave Passwords on System Q263968 Date: July 10, 2002 Software: Microsoft SQL Server 7.0, Microsoft Data Engine 1.0 MSDE 1.0, or SQL Server 2000...
SQL Server 7 & 2000 Installation process and Service Packs write encoded passwords to a file
Security Advisory Name: SQL Server 7 & 2000 Installation process and Service Packs write encoded passwords to a file. System Affected : Sql Server 7 & 2000, latest Service Packs. Severity : High. Author: Cesar Cerrudo. Date: 07/11/2002 Advisory Number: CC070204 Overview: When installing Microsoft...
Security Bulletin MS02-034: Cumulative Patch for SQL Server (Q316333)
-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Cumulative Patch for SQL Server Q316333 Date: 10 July 2002 Software: SQL Server 2000 Impact: Elevation of privilege Max Risk: Moderate Bulletin: MS02-034 Microsoft encourages custome...
Microsoft SQL Server 2000 'BULK INSERT' Buffer Overflow (#NISR11072002)
NGSSoftware Insight Security Research Advisory Name: BULK INSERT Buffer Overflow Systems Affected: Microsoft SQL Server 2000 Severity: Medium Category: Buffer Overrun Vendor URL: http://www.microsoft.com/ Authors: Mark Litchfield [email protected] Advisory URL:...
CVE-2002-0186
Buffer overflow in the SQLXML ISAPI extension of Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code via data queries with a long content-type parameter, aka "Unchecked Buffer in SQLXML ISAPI Extension."...
CVE-2002-0187
Cross-site scripting vulnerability in the SQLXML component of Microsoft SQL Server 2000 allows an attacker to execute arbitrary script via the root parameter as part of an XML SQL query, aka "Script Injection via XML Tag."...
Microsoft SQL Server 2000 OpenDataSource Buffer Overflow (#NISR19062002)
NGSSoftware Insight Security Research Advisory Name: OpenDataSource Buffer Overflow Systems: Microsoft SQL Server 2000, all Service Packs Severity: High Risk Category: Remote Buffer Overrun Vulnerability Vendor URL: http://www.microsoft.com/ Author: Mark Litchfield [email protected] Contributo...
Microsoft SQL Server 2000 / Microsoft Jet 4.0 Engine - Unicode Buffer Overflow (PoC)
source: https://www.securityfocus.com/bid/5057/info Microsoft SQL Server is prone to a remotely exploitable unicode-based buffer overflow condition. This condition occurs when the OpenDataSource function is used with MS Jet Engine. This issue may be exploited to execute attacker-supplied...
Microsoft SQL Server 2000 Microsoft Jet 4.0 Engine - Unicode Buffer Overflow (PoC)
Microsoft SQL Server 2000 Microsoft Jet 4.0 Engine - Unicode Buffer Overflow PoC source: https://www.securityfocus.com/bid/5057/info Microsoft SQL Server is prone to a remotely exploitable unicode-based buffer overflow condition. This condition occurs when the OpenDataSource function is used with...
Microsoft SQL Server 2000 pwdencrypt() buffer overflow
Microsoft SQL Server 2000 up to SP2 suffers from buffer/heap overflow in built-in hashing function pwdencrypt. Sample code shown below crashes SQL Server service and may lead to arbitrary code execution: SELECT pwdencryptREPLICATE'A',353 On some systems it may require lager amount of characters t...
Lumigent Log Explorer XP - _LogAttach_StartProf Buffer Overflow
Lumigent Log Explorer XP - LogAttachStartProf Buffer Overflow source: https://www.securityfocus.com/bid/5016/info A buffer overflow vulnerability in xplogattach.dll has been reported for Lumigent Log Explorer. Specifically, this affects the xplogattachStartProf stored procedure. If this condition...
Lumigent Log Explorer XP - _LogAttach_StartProf Buffer Overflow
source: https://www.securityfocus.com/bid/5016/info A buffer overflow vulnerability in xplogattach.dll has been reported for Lumigent Log Explorer. Specifically, this affects the xplogattachStartProf stored procedure. If this condition is successfully exploited, it is possible for locations in...