Microsoft SQL Server 2005 sp_replwritetovarbin memory overwrite (update to SEC Consult SA-20081209)

Update to SEC Consult Security Advisory 20081210-0 Microsoft SQL Server spreplwritetovarbin limited memory overwrite vulnerability =================================================================== Summary: ------------ By calling the extended stored procedure spreplwritetovarbin, an attacker ca...

Microsoft SQL Server 2000 sp_replwritetovarbin privilege escalation

It's possible to overwrite process internal data and execute code in server context...

CVE-2008-5416

Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine MSDE 2000 SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine WMSDE on Windows Server 2003 SP1 and SP2; and Windows Internal Database WYukon SP2...

Heap overflow

Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine MSDE 2000 SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine WMSDE on Windows Server 2003 SP1 and SP2; and Windows Internal Database WYukon SP2...

CVE-2008-5416

Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine MSDE 2000 SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine WMSDE on Windows Server 2003 SP1 and SP2; and Windows Internal Database WYukon SP2...

CVE-2008-5416

The connected KB/MS advisory confirms CVE-2008-5416 relates to a heap-based memory overwrite flaw in SQL Server via the sp_replwritetovarbin extended stored procedure. It affects multiple SQL Server family products and service packs (SQL Server 2000 SP4/MSDE 2000, SQL Server 2005 SP2, WYukon/Wind...

CVE-2008-5416

Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine MSDE 2000 SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine WMSDE on Windows Server 2003 SP1 and SP2; and Windows Internal Database WYukon SP2...

Microsoft SQL Server 'sp_replwritetovarbin' Remote Memory Corruption Vulnerability

Description Microsoft SQL Server is prone to a remote memory-corruption vulnerability because it fails to properly handle user-supplied input. Authenticated attackers can exploit this issue to execute arbitrary code and completely compromise affected computers. Failed attacks will likely cause...

[Full-disclosure] SEC Consult SA-20081109-0 :: Microsoft SQL Server 2000 sp_replwritetovarbin limited memory overwrite vulnerability

SEC Consult Security Advisory 20081209-0 ===================================================================================== title: Microsoft SQL Server 2000 spreplwritetovarbin limited memory overwrite vulnerability program: Microsoft SQL Server 2000 vulnerable version: =8.00.2039 homepage:...

Microsoft SQL Server 2000 sqlvdir.dll ActiveX Buffer Overflow Vulnerability

Microsoft SQL Server is prone to a buffer-overflow vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Microsoft SQL Server 2000 sqlvdir.dll ActiveX Buffer Overflow Vulnerability

The host is running Microsoft SQL Server, which is prone to buffer-overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodmssqlserver2000activexbofvuln900125.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: Microsoft SQL Server 2000 sqlvdir.dll ActiveX Buffer Overflow Vulnerability Author...

ms-sql-info NSE Script

Attempts to determine configuration and version information for Microsoft SQL Server instances. SQL Server credentials required: No will not benefit from mssql.username & mssql.password. Run criteria: Host script: Will always run. Port script: N/A NOTE: Unlike previous versions, this script will...

DorsaCms (ShowPage.aspx) Remote SQL Injection Vulnerability

No description provided by source. --------------------------------------------------------- Portal Name: Dorsa CMS Vendor : http://www.dorsacms.com Description : A CMS written by iranian programmers which uses by governmental websites. Vulnerable File : ShowPage.aspx Dork: Powered by DorsaCms...

Microsoft SQL Server Elevation of Privilege Vulnerabilities (941203)

This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

Microsoft SQL Server 2000 Client Components ActiveX Control Buffer Overflow (CVE-2008-4110)

Microsoft SQL Server is a relational database management system RDBMS. A buffer overflow vulnerability has been reported in Microsoft SQL Server. The vulnerability is due to a boundary error in the Microsoft SQL Server 2000 Client Components ActiveX Control sqlvdir.dll when handling parameters...

MS SQL Server Elevation of Privilege Vulnerabilities (941203)

This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. OpenVAS Vulnerability Test $Id: gbms08-040.nasl 5863 2017-04-05 07:38:11Z antu123 $ MS SQL Server Elevation of Privilege Vulnerabilities 941203 Authors: Veerendra GG Copyright: Copyright c 2008 Greenbone...

MS08-040: Microsoft SQL Server Multiple Privilege Escalation (941203) (uncredentialed check)

The remote host is running a version of Microsoft SQL Server, Desktop Engine, or Internal Database that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists due to improper initialization of memory pages when reallocating memory. An unauthenticated, remote...

Buffer overflow

Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...

Microsoft SQL Server sqlvdir.dll ActiveX控件缓冲区溢出漏洞

BUGTRAQ ID: 31129 Microsoft SQL Server是一款流行的SQL数据库系统。 SQL Server所安装的sqlvdir.dll ActiveX控件（默认路径为C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlvdir.dll，clsid：FC13BAA2-9C1A-4069-A221-31A147636038）所暴露的ISQLVDirControl接口没有正确的验证用户输入参数，如果用户受骗访问了恶意网页并向该方式传送了超长参数的话，就可能触发缓冲区溢出，导致执行任意代码。 Microsoft S...

Update Protection against Microsoft SQL Server Convert Function Buffer Overrun Vulnerability (MS08-040)

A buffer overflow vulnerability was reported in Microsoft SQL Server. Microsoft SQL Server is a relational database management system RDBMS. A remote attacker may exploit this vulnerability to run code on a vulnerable system...