Microsoft Data Access Components Overflow (CVE-2002-1142)

A heap-based buffer overflow vulnerability exists in Remote Data Services RDS component of Microsoft Data Access Components MDAC. The vulnerability is due to a design error in the processing of malformed HTTP request to the Data Stub. Successful exploitation of this vulnerability allows remote...

MS11-002: Microsoft Data Access Components Vulnerability

No description provided by source. html xmlns:t = urn:schemas-microsoft-com:time head meta name=License content=Q Public License;http://en.wikipedia.org/wiki/QPublicLicense style .body test /style script src=heapLib.js/script script // This code has been released under the Q Public License by...

MS12-045: Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution (2698365)

The version of Microsoft Data Access Components MDAC installed on the remote Windows host is affected by a remote code execution vulnerability that could allow arbitrary code execution if a user views a specially crafted web page. C Tenable Network Security, Inc. include"compat.inc"; if descripti...

CVE-2012-1891

Heap-based buffer overflow in Microsoft Data Access Components MDAC 2.8 SP1 and SP2 and Windows Data Access Components WDAC 6.0 allows remote attackers to execute arbitrary code via crafted XML data that triggers access to an uninitialized object in memory, aka "ADO Cachesize Heap Overflow RCE...

Heap overflow

Heap-based buffer overflow in Microsoft Data Access Components MDAC 2.8 SP1 and SP2 and Windows Data Access Components WDAC 6.0 allows remote attackers to execute arbitrary code via crafted XML data that triggers access to an uninitialized object in memory, aka "ADO Cachesize Heap Overflow RCE...

CVE-2012-1891

Heap-based buffer overflow in Microsoft Data Access Components MDAC 2.8 SP1 and SP2 and Windows Data Access Components WDAC 6.0 allows remote attackers to execute arbitrary code via crafted XML data that triggers access to an uninitialized object in memory, aka "ADO Cachesize Heap Overflow RCE...

PT-2012-3629 · Microsoft · Data Access Components +1

Name of the Vulnerable Software and Affected Versions: Microsoft Data Access Components MDAC versions 2.8 SP1 through 2.8 SP2 Windows Data Access Components WDAC version 6.0 Description: The issue allows remote attackers to execute arbitrary code via crafted XML data that triggers access to an...

Microsoft Data Access Components ADO Cachesize Heap Overflow (MS12-045; CVE-2012-1891)

A remote code execution vulnerability has been reported in Microsoft Data Access Components MDAC...

Microsoft Data Access Components CVE-2012-1891 Buffer Overflow Vulnerability

Description Microsoft Data Access Components MDAC are prone to a heap-based buffer-overflow vulnerability because they fail to properly bounds-check user-supplied data. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed...

Microsoft IIS - MDAC 'msadcs.dll' RDS DataStub Content-Type Overflow (MS02-065) (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Microsoft IIS MDAC msadcs.dll RD...

Microsoft IIS MDAC msadcs.dll RDS Arbitrary Remote Command Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

CVE-2011-0026

Integer signedness error in the SQLConnectW function in an ODBC API odbc32.dll in Microsoft Data Access Components MDAC 2.8 SP1 and SP2, and Windows Data Access Components WDAC 6.0, allows remote attackers to execute arbitrary code via a long string in the Data Source Name DSN and a crafted szDSN...

CVE-2011-0027

Microsoft Data Access Components MDAC 2.8 SP1 and SP2, and Windows Data Access Components WDAC 6.0, does not properly validate memory allocation for internal data structures, which allows remote attackers to execute arbitrary code, possibly via a large CacheSize property that triggers an integer...

Integer overflow

Integer signedness error in the SQLConnectW function in an ODBC API odbc32.dll in Microsoft Data Access Components MDAC 2.8 SP1 and SP2, and Windows Data Access Components WDAC 6.0, allows remote attackers to execute arbitrary code via a long string in the Data Source Name DSN and a crafted szDSN...

CVE-2011-0027

Microsoft Data Access Components MDAC 2.8 SP1 and SP2, and Windows Data Access Components WDAC 6.0, does not properly validate memory allocation for internal data structures, which allows remote attackers to execute arbitrary code, possibly via a large CacheSize property that triggers an integer...

CVE-2011-0027

CVE-2011-0027 concerns Microsoft Data Access Components (MDAC) 2.8 SP1/SP2 and Windows Data Access Components (WDAC) 6.0, where memory allocation for internal data structures is not properly validated. According to MS11-002, a remote attacker could trigger a code execution by a user viewing a cra...

Microsoft Data Access Components Data Source Name Buffer Overflow Vulnerability

Description Microsoft Data Access Components MDAC are prone to a buffer-overflow vulnerability because they fail to properly bounds-check user-supplied data. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks will...

MS11-002: Vulnerabilities in Microsoft Data Access Components Could Allow Remote Code Execution (2451910)

The version of Microsoft Data Access Components MDAC installed on the remote Windows host is affected by two vulnerabilities, which could allow arbitrary code execution if a user views a specially crafted web page: - A buffer overflow in the Open Database Connectivity ODBC API used by third-party...

Microsoft Data Access Components CacheSize Memory Corruption (MS11-002; CVE-2011-0027)

Microsoft Data Access Components MDAC is a collection of components that make it easy for programs to access databases and then to manipulate the data within them. MDAC provides a consolidated set of functions for working with different kinds of data sources in a consistent manner The vulnerabili...

PT-2011-2023 · Microsoft · Data Access Components +1

Name of the Vulnerable Software and Affected Versions: Microsoft Data Access Components MDAC versions 2.8 SP1 through 2.8 SP2 Windows Data Access Components WDAC version 6.0 Description: The issue is related to an integer signedness error in the SQLConnectW function within the odbc32.dll of...