1377 matches found
KB2674319 - Bugs that are fixed in SQL Server 2012 Service Pack 1
KB2674319 - Bugs that are fixed in SQL Server 2012 Service Pack 1 INTRODUCTION This article lists the bugs that are fixed in Microsoft SQL Server 2012 Service Pack 1 SP1. Notes Additional fixes that are not documented here may also be included in the service pack. This list will be updated when...
KB3167392 - Cumulative update 6 for SQL Server 2014 SP1
KB3167392 - Cumulative update 6 for SQL Server 2014 SP1 This article describes cumulative update package 6 Build number: 12.0.4457.0 for Microsoft SQL Server 2014 Service Pack 1 SP1. This update contains fixes that were released after the release of SQL Server 2014 SP1. Cumulative update Cumulati...
KB3045311 - MS15-058: Description of the security update for SQL Server 2008 Service Pack 4 GDR: July 14, 2015
KB3045311 - MS15-058: Description of the security update for SQL Server 2008 Service Pack 4 GDR: July 14, 2015 Summary This update resolves vulnerabilities in Microsoft SQL Server that could allow remote code execution if an authenticated attacker runs a specially crafted query that is designed t...
KB2546951 - List of issues that are fixed by SQL Server 2008 Service Pack 3
KB2546951 - List of issues that are fixed by SQL Server 2008 Service Pack 3 INTRODUCTION This article lists SQL Server 2008 issues that are fixed by Microsoft SQL Server 2008 Service Pack 3 SP3. Notes Some issues that are not documented might be fixed by the service pack. The list of issues will ...
KB2958429 - Bugs that are fixed in SQL Server 2012 Service Pack 2
KB2958429 - Bugs that are fixed in SQL Server 2012 Service Pack 2 Introduction This article lists the bugs that are fixed in Microsoft SQL Server 2012 Service Pack 2 SP2. Notes Additional fixes that are not documented here may also be included in the service pack. This list will be updated when...
KB3130926 - Cumulative Update 5 for SQL Server 2014 Service Pack 1
KB3130926 - Cumulative Update 5 for SQL Server 2014 Service Pack 1 This article describes cumulative update package 5 Build number: 12.0.4439.1 for Microsoft SQL Server 2014 Service Pack 1 SP1. This update contains fixes that were released after the release of SQL Server 2014 SP1. Cumulative upda...
Microsoft SQL Server Reporting Services 2016 ViewState deserialization vulnerability
Added: 09/25/2020 CVE: CVE-2020-0618 Background Microsoft SQL Server Reporting Services is a set of tools and services for creating, deploying, and managing mobile and paginated reports. Problem A deserialization vulnerability in Microsoft SQL Server Reporting Services 2016 allows a remote,...
Microsoft SQL Server Reporting Services 2016 ViewState deserialization vulnerability
Added: 09/25/2020 CVE: CVE-2020-0618 Background Microsoft SQL Server Reporting Services is a set of tools and services for creating, deploying, and managing mobile and paginated reports. Problem A deserialization vulnerability in Microsoft SQL Server Reporting Services 2016 allows a remote,...
Microsoft SQL Server Reporting Services 2016 ViewState deserialization vulnerability
Added: 09/25/2020 CVE: CVE-2020-0618 Background Microsoft SQL Server Reporting Services is a set of tools and services for creating, deploying, and managing mobile and paginated reports. Problem A deserialization vulnerability in Microsoft SQL Server Reporting Services 2016 allows a remote,...
Microsoft SQL Server Reporting Services 2016 Remote Code Execution
Exploit Title: Microsoft SQL Server Reporting Services 2016 - Remote Code Execution Google Dork: inurl:ReportViewer.aspx Date: 2020-09-17 Exploit Author: West Shepherd Vendor Homepage: https://www.microsoft.com Version: Microsoft SQL Server 2016 32-bit/x64 SP2 CU/GDR, Microsoft SQL Server 2014...
Microsoft SQL Server Reporting Services 2016 - Remote Code Execution Exploit
Exploit Title: Microsoft SQL Server Reporting Services 2016 - Remote Code Execution Google Dork: inurl:ReportViewer.aspx Exploit Author: West Shepherd Vendor Homepage: https://www.microsoft.com Version: Microsoft SQL Server 2016 32-bit/x64 SP2 CU/GDR, Microsoft SQL Server 2014 32-bit/x64 SP3...
Microsoft SQL Server Reporting Services 2016 - Remote Code Execution
Exploit Title: Microsoft SQL Server Reporting Services 2016 - Remote Code Execution Google Dork: inurl:ReportViewer.aspx Date: 2020-09-17 Exploit Author: West Shepherd Vendor Homepage: https://www.microsoft.com Version: Microsoft SQL Server 2016 32-bit/x64 SP2 CU/GDR, Microsoft SQL Server 2014...
Security Updates for Microsoft SQL Server Reporting Services (September 2020)
The Microsoft SQL Server Reporting Services installation on the remote host is missing a security update. It is, therefore, affected by a security feature bypass vulnerability in SQL Server Reporting Services SSRS due to improper validation of uploaded attachments to reports. An authenticated,...
KLA11958 SB vulnerability in Microsoft SQL Server
Security bypass vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2020-1044 Related products Microsoft-SQL-Server CVE list CVE-2020-1044 high KB list Solution Install necessary updates from the ...
Vulnerability fixed in Microsoft SQL Server Reporting Services
There is a vulnerability in Microsoft SQL Server Reporting Services SSRS. The vulnerability exists in the Reporting Service instance due to incorrect validation of attachments to reports. If successfully exploited, the vulnerability enables an authenticated malicious person able to add unauthoriz...
SQLMap v1.4.9 - Automatic SQL Injection And Database Takeover Tool
SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...
Denial of service
A denial of service vulnerability exists when Microsoft SQL Server Management Studio SSMS improperly handles files. An attacker could exploit the vulnerability to trigger a denial of service. To exploit the vulnerability, an attacker would first require execution on the victim system. The securit...
CVE-2020-1455 Microsoft SQL Server Management Studio Denial of Service Vulnerability
...
KLA11930 DoS vulnerability in Microsoft SQL Server
A denial of service vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2020-1455 Related products Microsoft-SQL-Server CVE list CVE-2020-1455 high KB list Solution Install necessary updates from the K...
Issues that are fixed in System Center 2012 Data Protection Manager SP1 Update Rollup 5
Issues that are fixed in System Center 2012 Data Protection Manager SP1 Update Rollup 5 Introduction This article describes the issues that are fixed in Update Rollup 5 for Microsoft System Center 2012 Data Protection Manager Service Pack 1 SP1. Additionally, this article contains the installatio...