62 matches found
KB5021123 - Description of the security update for SQL Server 2012 SP4 GDR: February 14, 2023
None None...
KLA48842 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface, bypass security restrictions. Below is a...
KB4583465 - Description of the security update for SQL Server 2012 SP4 GDR: January 12, 2021
KB4583465 - Description of the security update for SQL Server 2012 SP4 GDR: January 12, 2021 Summary Data can be sent over a network to an affected Microsoft SQL Server instance that might cause code to run against the SQL Server process if a certain extended event is enabled. To learn more about...
Microsoft SQL Server SQL Injection Vulnerability
Microsoft SQL Server is a large commercial database system from Microsoft that is used under Microsoft Windows. A SQL injection vulnerability exists in Microsoft SQL Server. The following products and versions are affected:Microsoft SQL Server 2019 for x64-based Systems GDR,Microsoft SQL Server...
KB2977325 - MS14-044: Description of the security update for SQL Server 2012 Service Pack 1 (QFE): August 12, 2014
KB2977325 - MS14-044: Description of the security update for SQL Server 2012 Service Pack 1 QFE: August 12, 2014 Introduction A security issue has been identified in Microsoft SQL Server 2012 Service Pack 1 that could allow an attacker to compromise your system and gain control over it. You can...
KB2793634 - Windows Installer starts repeatedly after you install SQL Server 2012 SP1
KB2793634 - Windows Installer starts repeatedly after you install SQL Server 2012 SP1 Symptoms After you install SQL Server 2012 SP1 on a computer, the Windows Installer Msiexec.exe process is repeatedly started to repair certain assemblies. Additionally, the following events are logged in the...
KB3045319 - MS15-058: Description of the security update for SQL Server 2012 Service Pack 2 QFE: July 14, 2015
KB3045319 - MS15-058: Description of the security update for SQL Server 2012 Service Pack 2 QFE: July 14, 2015 Summary This update resolves vulnerabilities in Microsoft SQL Server that could allow remote code execution if an authenticated attacker runs a specially crafted query that is designed t...
KB3045318 - MS15-058: Description of the security update for SQL Server 2012 SP1 GDR: July 14, 2015
KB3045318 - MS15-058: Description of the security update for SQL Server 2012 SP1 GDR: July 14, 2015 Summary This update resolves vulnerabilities in Microsoft SQL Server that could allow remote code execution if an authenticated attacker runs a specially crafted query that is designed to execute a...
KB3045321 - MS15-058: Description of the security update for SQL Server 2012 Service Pack 2 GDR: July 14, 2015
KB3045321 - MS15-058: Description of the security update for SQL Server 2012 Service Pack 2 GDR: July 14, 2015 Summary This update resolves vulnerabilities in Microsoft SQL Server that could allow remote code execution if an authenticated attacker runs a specially crafted query that is designed t...
Starbucks: SQL Injection Extracts Starbucks Enterprise Accounting, Financial, Payroll Database
As described in the Hacker Summary, @spaceraccoon discovered a SQL Injection vulnerability in a web service backed by Microsoft Dynamics AX. @spaceraccoon demonstrated that the flaw was exploitable via XML-formatted HTTP payload requests to the server. We appreciate @spaceraccoon's clear and...
Description of the security update for SQL Server 2012 SP3 CU: January 16, 2018
None None...
Description of the security update for SQL Server 2012 SP4 GDR: January 12, 2018
None None...
Description of the security update for SQL Server 2012 SP3 GDR: January 16, 2018
None None...
KB4019090 - Description of the security update for SQL Server 2012 Service Pack 3 CU: August 8, 2017
KB4019090 - Description of the security update for SQL Server 2012 Service Pack 3 CU: August 8, 2017 Summary This update resolves vulnerabilities in Microsoft SQL Server. The most severe vulnerabilities could allow an attacker to exploit the vulnerability if the attacker's credentials allow acces...
Update Rollup 7 for System Center 2012 Orchestrator Service Pack 1
Update Rollup 7 for System Center 2012 Orchestrator Service Pack 1 Introduction This article describes the issues that are fixed in Update Rollup 7 for Microsoft System Center 2012 Orchestrator Service Pack 1 SP1. This article also contains the installation instructions for Update Rollup 7 for...
MS14-044: Description of the security update for SQL Server 2012 Service Pack 1 (GDR): August 12, 2014
MS14-044: Description of the security update for SQL Server 2012 Service Pack 1 GDR: August 12, 2014 Introduction A security issue has been identified in Microsoft SQL Server 2012 Service Pack 1 that could allow an attacker to compromise your system and gain control over it. You can help protect...
CVE-2016-7254
Microsoft SQL Server 2012 SP2 and 2012 SP3 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability."...
KB3194719 - MS16-136: Description of the security update for SQL Server 2012 Service Pack 2 GDR: November 8, 2016
KB3194719 - MS16-136: Description of the security update for SQL Server 2012 Service Pack 2 GDR: November 8, 2016 Summary This update resolves vulnerabilities in Microsoft SQL Server. The most severe vulnerabilities could allow an attacker to gain elevated privileges that might be used to create...
MS16-136: Description of the security update for SQL Server 2012 Service Pack 3 GDR: November 8, 2016
MS16-136: Description of the security update for SQL Server 2012 Service Pack 3 GDR: November 8, 2016 Summary This update resolves vulnerabilities in Microsoft SQL Server. The most severe vulnerabilities could allow an attacker to gain elevated privileges that might be used to create accounts, or...
KB3194724 - MS16-136: Description of the security update for SQL Server 2012 Service Pack 3 CU: November 8, 2016
KB3194724 - MS16-136: Description of the security update for SQL Server 2012 Service Pack 3 CU: November 8, 2016 Summary This update resolves vulnerabilities in Microsoft SQL Server. The most severe vulnerabilities could allow an attacker to gain elevated privileges that might be used to create...