15 matches found
EUVD-2024-46830
Malicious code in bioql PyPI...
Red-Gate SQL Monitor 3.10 4.2 - Authentication Bypass
Red-Gate SQL Monitor 3.10 4.2 - Authentication Bypass Exploit Title: Red-Gate SQL Monitor authentication bypass Version: Redgate SQL Monitor before 3.10 and 4.x before 4.2 Date: 2017-08-10 Red-Gate made a security announcement and publicly released the fixed version more than two years before thi...
Microsoft SQL Server 2012 11.0.x.x < 11.0.3460.0 Multiple Vulnerabilities (2977325)
Binary data 9704.prm...
Microsoft SQL Server 2014 12.0.x.x < 12.0.2381.0 Multiple Vulnerabilities (2977316)
Binary data 9705.prm...
Microsoft SQL Server 2008 10.00.x.x < 10.00.5869.00 Multiple Vulnerabilities (2984340)
Binary data 9702.prm...
CVE-2014-4061
Microsoft SQL Server 2008 SP3, 2008 R2 SP2, and 2012 SP1 does not properly control use of stack memory for processing of T-SQL batch commands, which allows remote authenticated users to cause a denial of service daemon hang via a crafted T-SQL statement, aka "Microsoft SQL Server Stack Overrun...
KLA10615 Multiple vulnerabilities in Microsoft SQL Server
Multiple serious vulnerabilities have been found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to cause denial of service or inject arbitrary code. Below is a complete list of vulnerabilities 1. Lack of stack memory restrictions can be exploited remotely via a special...
Microsoft SQL Server Backup Restoring Memory Corruption (MS08-040; CVE-2008-0107)
Microsoft SQL Server is a relational database management system RDBMS. Microsoft SQL Server uses Transact-SQL T-SQL, a proprietary extension to Structured Query Language SQL, for querying and modifying data and managing databases. SQL Server can be remotely access via the Tabular Data Stream TDS...
Microsoft SQL Server CONVERT Function Buffer Overflow (MS08-040; CVE-2008-0086)
Microsoft SQL Server is a relational database management system RDBMS. Microsoft SQL Server uses Transact-SQL T-SQL, a proprietor extension to Structured Query Language SQL, for querying and modifying data and managing databases. SQL Server can be remotely accessed via the Tabular Data Stream TDS...
Microsoft SQL Server Heap Overflow Exploit
% // ksOSe 12/17/2008 // Microsoft SQL Server "spreplwritetovarbin" Heap Overflow // Tested on Win2k SP4 with MSSQL 2000on one box only!. // Shellcode is a slightly modified metasploit reverse shellon 10.10.10.1 port 4445, // the change allows multiple shots : // // You need a valid SQL account,...
Microsoft SQL Server sp_replwritetovarbin() Heap Overflow Exploit (0day)
No description provided by source. html % // ksOSe 12/17/2008 // Microsoft SQL Server "spreplwritetovarbin" Heap Overflow // Tested on Win2k SP4 with MSSQL 2000on one box only!. // Shellcode is a slightly modified metasploit reverse shellon 10.10.10.1 port 4445, // the change allows multiple shot...
Microsoft SQL Server - sp_replwritetovarbin() Heap Overflow
Microsoft SQL Server - spreplwritetovarbin Heap Overflow % // ksOSe 12/17/2008 // Microsoft SQL Server "spreplwritetovarbin" Heap Overflow // Tested on Win2k SP4 with MSSQL 2000on one box only!. // Shellcode is a slightly modified metasploit reverse shellon 10.10.10.1 port 4445, // the change...
CVE-2002-0695
CVE-2002-0695 describes a buffer overflow in the Transact-SQL (T-SQL) OpenRowSet component of Microsoft Data Access Components (MDAC) 2.5–2.7, affecting SQL Server 7.0 or 2000. The underlying issue is a buffer overflow in the OpenRowSet path that could allow a remote attacker to execute arbitrary...
Remote buffer overflow in DCOM VB T-SQL debugger
BindView Security Advisory -------- Remote buffer overflow in DCOM VB T-SQL debugger Issue Date: March 27, 2001 Contact: [email protected] Topic: Remote buffer overflow in DCOM VB T-SQL debugger Overview: Microsoft Developer Studio version 6 installs a world-launchable DCOM object, known ...
Дырка в Microsoft Developer Studio (DCOM VB T-SQL debugger buffer overflow)
Устанавливается DCOM-объект с разрешениями на запуск VB T-SQL Debugger в котором присутствует переполнение буфера...