Microsoft Security Bulletin MS02-061 : Elevation of Privilege in SQL Server Web Tasks (Q316333)

By Bill Graziano on 21 October 2002 | Tags: Hot Fixes


macka submitted "Who should read this bulletin: System administrators using Microsoft® SQL Server™ 7.0, SQL Server 2000, Microsoft Data Engine (MSDE) 1.0, and Microsoft Desktop Engine (MSDE) 2000. Maximum Severity Rating: Critical.

NOTE: This is a new vulnerability that is fixed by the same patch as the one posted on 10/3/2002 (Q316333), just below this article. If you've already installed that patch you are not affected by this new vulnerability.

Link: Microsoft Security Bulletin MS02-061 : Elevation of Privilege in SQL Server Web Tasks (Q316333)


Related Articles

New SQL Server Cumulative Security Patch (3 October 2002)

SQL Server 2000 Cumulative Security Update ... Again. (16 August 2002)

Cumulative Patch for SQL Server 2000 (11 July 2002)

New Sql Server Buffer Overrun issue (17 June 2002)

Worm squirming through SQL servers (21 May 2002)

Unchecked Buffer in Extended Stored Procedures (17 April 2002)

SQL Injection White Paper (2 April 2002)

MS: SQL Server Remote Data Source Function Contain Unchecked Buffers (20 February 2002)

Other Recent Forum Posts

Return all rows from first table & specific values from joined table? (3d)

Distinct number in column with max value in another column (4d)

SQL System Databases (4d)

Performance improvement - using temp table (4d)

Generate a Create Table Statement with a SQL Query but with Flexible Datatypes (6d)

Filter Date Range (6d)

Beat methods to validate/test the output data with original data (6d)

Access temp tables already created from within dynamic OpenQuery (6d)

- Advertisement -