5 matches found
Security Updates for Microsoft SQL Server ODBC Driver (June 2023)
The Microsoft SQL Server driver installation on the remote host is missing a security update. It is, therefore, affected by remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for...
CVE-2023-29349
Microsoft ODBC and OLE DB Remote Code Execution Vulnerability...
CVE-2023-29349
Microsoft ODBC and OLE DB Remote Code Execution Vulnerability...
CVE-2023-29349 Microsoft ODBC and OLE DB Remote Code Execution Vulnerability
...
CVE-2023-29349
CVE-2023-29349 concerns Microsoft ODBC and OLE DB components (SQL Server ODBC Driver and OLE DB Driver) enabling remote code execution. The vulnerability arises from improper handling in the ODBC/OLE DB stack, with an attack vector described as LOCAL and requiring user interaction, resulting in h...