SAINT top bar Go to home page Search this site Contact SAINT Corporation
SAINT logo







 

 

 

 

 

Microsoft SQL Server Hello buffer overflow

Added: 08/07/2006
CVE: CVE-2002-1123
BID: 5411
OSVDB: 10132

Background

Microsoft SQL Server is a database server package for Windows platforms.

Problem

Microsoft SQL Server 2000 is affected by a buffer overflow vulnerability in the code which handles user authentication. This allows a remote attacker to execute arbitrary commands.

Resolution

Apply the patch referenced in Microsoft Security Bulletin 02-056.

References

http://www.microsoft.com/technet/security/bulletin/ms02-056.mspx

Limitations

Exploit works on Microsoft SQL Server 2000 SP2 on Windows 2000.

Platforms

Windows

Back to exploit index
  Copyright SAINT Corporation. All Rights Reserved. Privacy information Legal information Site map