MS SQL Server Elevation of Privilege Vulnerabilities (941203)

This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. OpenVAS Vulnerability Test $Id: gbms08-040.nasl 5863 2017-04-05 07:38:11Z antu123 $ MS SQL Server Elevation of Privilege Vulnerabilities 941203 Authors: Veerendra GG Copyright: Copyright c 2008 Greenbone...

Microsoft SQL Server Elevation of Privilege Vulnerabilities (941203)

This host has Microsoft SQL Server, which is prone to Privilege Escalation Vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

HTTP Microsoft SQL Injection Table XSS Infection

This module implements the mass SQL injection attack in use lately by concatenation of HTML string that forces a persistent XSS attack to redirect user browser to an attacker controller website. This module requires Metasploit: https://metasploit.com/download Current source:...

MS08-040: Microsoft SQL Server Multiple Privilege Escalation (941203) (uncredentialed check)

The remote host is running a version of Microsoft SQL Server, Desktop Engine, or Internal Database that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists due to improper initialization of memory pages when reallocating memory. An unauthenticated, remote...

Buffer overflow

Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 aka SQL Server 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long URL in the second argument to the Connect...

Microsoft SQL Server sqlvdir.dll ActiveX控件缓冲区溢出漏洞

BUGTRAQ ID: 31129 Microsoft SQL Server是一款流行的SQL数据库系统。 SQL Server所安装的sqlvdir.dll ActiveX控件（默认路径为C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlvdir.dll，clsid：FC13BAA2-9C1A-4069-A221-31A147636038）所暴露的ISQLVDirControl接口没有正确的验证用户输入参数，如果用户受骗访问了恶意网页并向该方式传送了超长参数的话，就可能触发缓冲区溢出，导致执行任意代码。 Microsoft S...

Update Protection against Microsoft SQL Server Convert Function Buffer Overrun Vulnerability (MS08-040)

A buffer overflow vulnerability was reported in Microsoft SQL Server. Microsoft SQL Server is a relational database management system RDBMS. A remote attacker may exploit this vulnerability to run code on a vulnerable system...

Microsoft SQL Server Xp_sprintf 缓冲区溢出

Microsoft SQL Server 6.5Service Pack 5以前的版本中有一个存储过程xpsprintf存在一个 缓冲区溢出问题。攻击者可以使用这个存储过程使服务器崩溃，并可能在运行SQL server的系统 中获得管理员控制权限。 Microsoft SQL Server 6.5 Microsoft SQL Server 6.0 - Microsoft Windows NT 4.00 更新到更高版本的SQL Server6.5...

Microsoft SQL Server磁盘数据结构整数溢出漏洞（MS08-040）

BUGTRAQ ID: 30119 CVECAN ID: CVE-2008-0107 Microsoft SQL Server是一款流行的SQL数据库系统。 SQL Server负责解析存储备份数据的代码存在漏洞，该段代码从文件获得了代表记录大小的32位整数值用于计算所要读取到堆缓冲区的字节数。这个计算可能下溢，导致分配不充分的内存，之后的操作会触发溢出。 如果要利用这个漏洞，攻击者必须能够诱骗服务器加载特制的备份文件，可通过提交到远程文件的路径或使用SMB/WebDAV来实现。 Microsoft SQL Server 7.0 SP4 Microsoft SQL Server 2005...

Microsoft SQL Server multiple security vulnerabilities

Buffer overflows, memorry corruptions, information leak...

Microsoft Security Bulletin MS08-040 – Important Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege (941203)

Microsoft Security Bulletin MS08-040 – Important Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege 941203 Published: July 8, 2008 Version: 1.0 General Information Executive Summary This security update resolves four privately disclosed vulnerabilities. The more serious of...

Buffer overflow

Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine MSDE 2000 SP4, and 2000 Desktop Engine WMSDE allows remote authenticated users to execute arbitrary code via a crafted SQL expression...

Buffer overflow

Buffer overflow in Microsoft SQL Server 2005 SP1 and SP2, and 2005 Express Edition SP1 and SP2, allows remote authenticated users to execute arbitrary code via a crafted insert statement...

CVE-2008-0086

Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine MSDE 2000 SP4, and 2000 Desktop Engine WMSDE allows remote authenticated users to execute arbitrary code via a crafted SQL expression...

CVE-2008-0106

Buffer overflow in Microsoft SQL Server 2005 SP1 and SP2, and 2005 Express Edition SP1 and SP2, allows remote authenticated users to execute arbitrary code via a crafted insert statement...

CVE-2008-0086

CVE-2008-0086 corresponds to vulnerabilities addressed by MS08-040. The Connected KB (KB941203) states MS08-040 resolves four privately disclosed vulnerabilities in Microsoft SQL Server products, with the more serious one enabling code execution and full system compromise if exploited. The CVE de...

CVE-2008-0106

CVE-2008-0106 describes a buffer overflow in Microsoft SQL Server 2005 SP1/SP2 and SQL Server 2005 Express SP1/SP2 that could allow remote authenticated users to execute arbitrary code via a crafted insert statement. The connected KB article MS08-040 (KB941203) confirms Microsoft released a secur...

CVE-2008-0086

Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine MSDE 2000 SP4, and 2000 Desktop Engine WMSDE allows remote authenticated users to execute arbitrary code via a crafted SQL expression...

CVE-2008-0106

Buffer overflow in Microsoft SQL Server 2005 SP1 and SP2, and 2005 Express Edition SP1 and SP2, allows remote authenticated users to execute arbitrary code via a crafted insert statement...

Microsoft SQL Server On-Disk MTF Data Structures Remote Memory Corruption Vulnerability

Description Microsoft SQL Server is prone to a remote memory-corruption vulnerability because it fails to perform adequate boundary checks on user-supplied input. Authenticated attackers can exploit this issue to execute arbitrary code in the context of the server. Failed attacks will likely caus...