Microsoft Security Bulletin MS02-061 : Elevation of Privilege in SQL Server Web Tasks (Q316333)

By Bill Graziano on 21 October 2002 | Tags: Hot Fixes


macka submitted "Who should read this bulletin: System administrators using Microsoft® SQL Server™ 7.0, SQL Server 2000, Microsoft Data Engine (MSDE) 1.0, and Microsoft Desktop Engine (MSDE) 2000. Maximum Severity Rating: Critical.

NOTE: This is a new vulnerability that is fixed by the same patch as the one posted on 10/3/2002 (Q316333), just below this article. If you've already installed that patch you are not affected by this new vulnerability.

Link: Microsoft Security Bulletin MS02-061 : Elevation of Privilege in SQL Server Web Tasks (Q316333)


Related Articles

New SQL Server Cumulative Security Patch (3 October 2002)

SQL Server 2000 Cumulative Security Update ... Again. (16 August 2002)

Cumulative Patch for SQL Server 2000 (11 July 2002)

New Sql Server Buffer Overrun issue (17 June 2002)

Worm squirming through SQL servers (21 May 2002)

Unchecked Buffer in Extended Stored Procedures (17 April 2002)

SQL Injection White Paper (2 April 2002)

MS: SQL Server Remote Data Source Function Contain Unchecked Buffers (20 February 2002)

Other Recent Forum Posts

NULL IN List (1d)

When Dynamic Connection Fails, Package Succeeds but Job Fails (1d)

Backup failure with Linked Server to another MS SQL unavailable (1d)

Need Help to transpose the result in SQL (1d)

Views in restored MS Dynamics database return zero lines (2d)

DROP Table #TempTable (2d)

Unpivot (2d)

What variable type could I use in a trigger to read information from a text field (2d)

- Advertisement -