Microsoft Security Bulletin MS02-061 : Elevation of Privilege in SQL Server Web Tasks (Q316333)

By Bill Graziano on 21 October 2002 | Tags: Hot Fixes


macka submitted "Who should read this bulletin: System administrators using Microsoft® SQL Server™ 7.0, SQL Server 2000, Microsoft Data Engine (MSDE) 1.0, and Microsoft Desktop Engine (MSDE) 2000. Maximum Severity Rating: Critical.

NOTE: This is a new vulnerability that is fixed by the same patch as the one posted on 10/3/2002 (Q316333), just below this article. If you've already installed that patch you are not affected by this new vulnerability.

Link: Microsoft Security Bulletin MS02-061 : Elevation of Privilege in SQL Server Web Tasks (Q316333)


Related Articles

New SQL Server Cumulative Security Patch (3 October 2002)

SQL Server 2000 Cumulative Security Update ... Again. (16 August 2002)

Cumulative Patch for SQL Server 2000 (11 July 2002)

New Sql Server Buffer Overrun issue (17 June 2002)

Worm squirming through SQL servers (21 May 2002)

Unchecked Buffer in Extended Stored Procedures (17 April 2002)

SQL Injection White Paper (2 April 2002)

MS: SQL Server Remote Data Source Function Contain Unchecked Buffers (20 February 2002)

Other Recent Forum Posts

Pivot data but keep equal number per metric (3d)

Change Font Size In T-SQL Message Window? (4d)

Who has joined and who has left (5d)

Linked Server Selection Query Fails with "MS DTC has stopped this transaction" (9d)

Query almost perfect but brings wrong record (10d)

Installing integration Services with Web edition (11d)

Can I add dynamic WHERE clause to this query? (12d)

Show difference between records in master file and submitted records (28d)

- Advertisement -