23 matches found
CVE-2024-29982
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability...
CVE-2024-28945
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability...
CVE-2024-28927
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability...
CVE-2024-28910
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability...
CVE-2024-26244
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...
CVE-2024-29044
CVE-2024-29044 : Microsoft OLE DB Driver for SQL Server Remote Code Execution vulnerability. Connected documentation confirms impact via the OLE DB driver component and lists a security update (KB5036335) that fixes it for SQL Server 2019 CU25, bringing product version to 15.0.4360.2 (Windows) / ...
CVE-2024-28912
The CVE CVE-2024-28912 affects Microsoft OLE DB Driver for SQL Server. It is a remote code execution vulnerability (attack vector: network) in the OLE DB driver components that can allow an attacker to execute arbitrary code on the target system with no privileges and user interaction required. I...
Microsoft OLE DB Provider for SQL Server 安全漏洞
Microsoft OLE DB Provider for SQL Server is an API from Microsoft Corporation that allows access to data from a variety of sources in a unified way. A security vulnerability exists in Microsoft OLE DB Provider for SQL Server. An attacker could exploit the vulnerability to remotely execute code. T...
Microsoft OLE DB Provider for SQL Server 安全漏洞
Microsoft OLE DB Provider for SQL Server is an API from Microsoft Corporation that allows access to data from a variety of sources in a unified way. A security vulnerability exists in Microsoft OLE DB Provider for SQL Server. An attacker could exploit the vulnerability to remotely execute code. T...
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
KB5032921 - A possible stack buffer overflow from a remote code execution vulnerability has been exposed in the OLEDB provider for DB2.
KB5032921 - A possible stack buffer overflow from a remote code execution vulnerability has been exposed in the OLEDB provider for DB2. Host Integration Server 2020 Introduction A possible stack buffer overflow from a remote code execution has been exposed in the OLEDB provider for DB2. This fix...
Provisioning 2203 : Citrix PVS breaks with Microsoft OLEDB driver v19
When upgrading PVS 2203 servers to mitigate a Microsoft OLEDB driver vulnerability CVE-2023-36728, a customer incorrectly removed Microsoft OLE DB Driver 18 and installed Microsoft OLE DB Driver 19. PVS Server 2203 cannot use Microsoft OLE DB Driver 19 to communicate with the SQL server...
Vulnerabilities fixed in Microsoft SQL Server
Microsoft has fixed four vulnerabilities in OLEDB and the ODBC Driver. These components are used by clients to communicate with SQL Server. A malicious party could exploit the vulnerability to execute arbitrary code on the client that using them. The malicious party must trick the victim into...
January 3, 2023, update for Office 2016 (KB5002244)
January 3, 2023, update for Office 2016 KB5002244 This article describes update 5002244 for Microsoft Office 2016 that was released on January 3, 2023.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply t...
PT-2022-5738 · Microsoft · Sql Server +2
Name of the Vulnerable Software and Affected Versions: Microsoft WDAC OLE DB provider for SQL Server affected versions not specified Description: The issue is caused by insufficient input validation in the OLE DB driver for SQL Server on the Windows operating system. This allows a remote attacker...
April 5, 2022, update for Office 2016 (KB5002141)
April 5, 2022, update for Office 2016 KB5002141 This article describes update 5002141 for Microsoft Office 2016 that was released on April 5, 2022.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to...
Microsoft Zero-Day Patch for JET Bug Incomplete, Claims Firm
UPDATE Microsoft patched a zero-day in its JET Database Engine this week – but the patch was incomplete, according to researchers at 0patch. The company has developed a micropatch that corrects that hole, it said Friday. The memory corruption vulnerability CVE-2018-8423 could allow remote...
Microsoft Windows XLS File Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Microsoft...
Microsoft Windows XLS File Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Microsoft...
Symantec Warns of New Malware Targeting SQL Databases
Symantec is warning of a new bit of malware that appears to be modifying corporate databases, particularly in the Middle East, though its showing up elsewhere in the world too. W32.Narilam, first discovered Nov. 15, follows a similar pattern of other worms by copying itself onto infected machines...