CVE-2011-0026

Name of the Vulnerable Software and Affected Versions Microsoft Data Access Components (MDAC) versions 2.8 SP1 through 2.8 SP2 Windows Data Access Components (WDAC) version 6.0

Description The issue is related to an integer signedness error in the SQLConnectW function within the odbc32.dll of Microsoft Data Access Components. This error allows remote attackers to execute arbitrary code by providing a long string in the Data Source Name (DSN) and a crafted szDSN argument. The crafted argument bypasses a signed comparison, leading to a buffer overflow.

Recommendations For Microsoft Data Access Components (MDAC) versions 2.8 SP1 and 2.8 SP2, consider applying a patch or update to fix the integer signedness error in the SQLConnectW function. For Windows Data Access Components (WDAC) version 6.0, consider applying a patch or update to fix the integer signedness error in the SQLConnectW function. As a temporary workaround, consider restricting the length of the szDSN argument to prevent buffer overflow until a patch is available.