PT-2002-1680 · Microsoft · Desktop Engine (Msde) 2000+1

Publicado

2002-07-26

Atualizado

2018-10-12

CVE-2002-0644

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Microsoft SQL Server 2000 Microsoft Desktop Engine (MSDE) 2000

Description A buffer overflow issue exists in several Database Consistency Checkers (DBCCs) for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000. This issue allows members of the db owner and db ddladmin roles to execute arbitrary code.

Recommendations For Microsoft SQL Server 2000, apply the necessary security patches to fix the buffer overflow issue in DBCCs. For Microsoft Desktop Engine (MSDE) 2000, apply the necessary security patches to fix the buffer overflow issue in DBCCs. As a temporary workaround, consider restricting the db owner and db ddladmin roles to minimize the risk of exploitation.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-0644

Produtos afetados

Desktop Engine (Msde) 2000

Sql Server 2000

PT-2002-1680 · Microsoft · Desktop Engine (Msde) 2000+1

CVE-2002-0644

Identificadores relacionados

Produtos afetados

Referências · 3