Microsoft SQL (MSSQL) Server Detection (TCP/IP Listener)

Microsoft SQL MSSQL Server detection based on an exposed TCP/IP listener. SPDX-FileCopyrightText: 2005 Nicolas Gregoire Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2005-1272

Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port 1 6070 or 2 6050...

CVE-2005-1272

Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port 1 6070 or 2 6050...

[Full-disclosure] iDEFENSE Security Advisory 08.02.05: CA BrightStor ARCserve Backup Agent for MS SQL Server Buffer Overflow

CA BrightStor ARCserve Backup Agent for MS SQL Server Buffer Overflow iDEFENSE Security Advisory 08.02.05 www.idefense.com/application/poi/display?id=287&type=vulnerabilities August 2, 2005 I. BACKGROUND BrightStor ARCserve Backup for Windows delivers backup and restore protection for all Windows...

CVE-2002-1981

Microsoft SQL Server 2000 through SQL Server 2000 SP2 allows the "public" role to execute the 1 spMSSetServerProperties or 2 spMSsetalertinfo stored procedures, which allows attackers to modify configuration including SQL server startup and alert settings...

CVE-2002-1872

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption XOR, which allows remote attackers to sniff and decrypt the password...

CVE-2002-1981

Microsoft SQL Server 2000 up to SP2 allows the public role to execute the stored procedures sp_MSSetServerProperties and sp_MSsetalertinfo, enabling modification of configuration including startup and alert settings. This CVE description is corroborated across NVD/Red Hat/CVE pages. No explicit e...

CVE-2004-1560

Microsoft SQL Server 7.0 allows remote attackers to cause a denial of service mssqlserver service halt via a long request to TCP port 1433, possibly triggering a buffer overflow...

CVE-2004-1560

The CVE-2004-1560 issue concerns Microsoft SQL Server 7.0. According to connected advisories, a buffer overflow in the TDS packet handling during fragmentation can be triggered remotely by a long request to TCP port 1433, potentially allowing remote code execution or causing application crashes. ...

CVE-2004-1560

Microsoft SQL Server 7.0 allows remote attackers to cause a denial of service mssqlserver service halt via a long request to TCP port 1433, possibly triggering a buffer overflow...

Microsoft SQL Server 7.0 - Remote Denial of Service (2)

Microsoft SQL Server 7.0 - Remote Denial of Service 2 // source: https://www.securityfocus.com/bid/11265/info Reportedly Microsoft SQL Server is affected by a remote denial of service vulnerability. This issue is due to a failure of the application to handle irregular network communications. An...

Microsoft SQL Server 7.0 - Remote Denial of Service (1)

// source: https://www.securityfocus.com/bid/11265/info Reportedly Microsoft SQL Server is affected by a remote denial of service vulnerability. This issue is due to a failure of the application to handle irregular network communications. An attacker may leverage this issue to cause the affected...

Microsoft SQL Server 7.0 - Remote Denial of Service (2)

// source: https://www.securityfocus.com/bid/11265/info Reportedly Microsoft SQL Server is affected by a remote denial of service vulnerability. This issue is due to a failure of the application to handle irregular network communications. An attacker may leverage this issue to cause the affected...

Microsoft SQL Server 7.0 - Remote Denial of Service (1)

Microsoft SQL Server 7.0 - Remote Denial of Service 1 // source: https://www.securityfocus.com/bid/11265/info Reportedly Microsoft SQL Server is affected by a remote denial of service vulnerability. This issue is due to a failure of the application to handle irregular network communications. An...

CVE-2002-1123

Buffer overflow in the authentication function for Microsoft SQL Server 2000 and Microsoft Desktop Engine MSDE 2000 allows remote attackers to execute arbitrary code via a long request to TCP port 1433, aka the "Hello" overflow...

CVE-2002-1137

Buffer overflow in the Database Console Command DBCC that handles user inputs in Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine MSDE 1.0 and Microsoft Desktop Engine MSDE 2000, allows attackers to execute arbitrary code via a long SourceDB argument in a "non-SQL OLEDB data...

CVE-1999-1556

Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account and stores it in an accessible portion of the registry, which could allow local users to gain privileges by reading and decrypting the CmdExecAccount value...

CVE-2002-1138

CVE-2002-1138 affects Microsoft SQL Server 7.0 and 2000, including MSDE 1.0 and MSDE 2000. The flaw is in Output File Handling for Scheduled Jobs: these components write output files for scheduled jobs under the SQL Server service account rather than the launching entity. This privilege mismatch ...

CVE-2002-1137

CVE-2002-1137 describes a buffer overflow in the Database Console Command (DBCC) in Microsoft SQL Server 7.0 and 2000, including MSDE 1.0/MSDE 2000. The vulnerability stems from handling of user input, allowing an attacker to execute arbitrary code via a long SourceDB argument in a non-SQL OLEDB ...

CVE-2002-0729

Microsoft SQL Server 2000 allows remote attackers to cause a denial of service via a malformed 0x08 packet that is missing a colon separator...