MS: SQL Server Text Formatting Functions Contain Unchecked Buffers

By Bill Graziano on 20 December 2001 | Tags: Hot Fixes


Two security vulnerabilities have been discovered in MS SQL Server. One involves the dreaded but common buffer overflow. The second allows a denial of service attack. Follow the link for this article to download a patch for SQL7 and SQL2000. (Thanks Merkin)

Link: MS: SQL Server Text Formatting Functions Contain Unchecked Buffers


Related Articles

Microsoft Security Bulletin MS02-061 : Elevation of Privilege in SQL Server Web Tasks (Q316333) (21 October 2002)

New SQL Server Cumulative Security Patch (3 October 2002)

SQL Server 2000 Cumulative Security Update ... Again. (16 August 2002)

Cumulative Patch for SQL Server 2000 (11 July 2002)

New Sql Server Buffer Overrun issue (17 June 2002)

Worm squirming through SQL servers (21 May 2002)

Unchecked Buffer in Extended Stored Procedures (17 April 2002)

SQL Injection White Paper (2 April 2002)

Other Recent Forum Posts

SQL Server detected a logical consistency-based I/O error: torn page (expected signature: 0xaaaaaaaa; actual signature: 0xfffffffe). It occurred during a read of page (1:908) in database ID 99 at offset (69m)

Case stmt in SSIS (19h)

Upgrading from MSSQL 2016 to 2017 (1d)

Why does CASE WHEN NULL IN (SELECT A FROM B) THEN 'Y' ELSE '' AS [NULL] does not work? (1d)

Tensorflow package installation on SQL 2019 ML Services (1d)

How can I reference the table (T1 JOIN T2 ON A=B JOIN T3 ON C=D)? (1d)

Is there an easy way to populate a column with an INDEX/MATCH statement? (2d)

Is joining table completely deceiving? (2d)

- Advertisement -