Vulnerabilities

CVE-2001-0542

by Fred · 18/02/2002

Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is identified by CVE-2001-0879.

Date published : 2002-02-18

http://www.atstake.com/research/advisories/2001/a122001-1.txt

http://www.securityfocus.com/bid/3733

Related

Tags: Cybersecurity Alert