Family: Windows : Microsoft Bulletins --> Category: infos
Cumulative Patch for MS SQL Server (815495) Vulnerability Scan
Vulnerability Scan Summary
Microsoft's SQL Version Query
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through SQL service.
The remote Microsoft SQL server is vulnerable to several flaws :
- Named pipe hijacking
- Named Pipe Denial of Service
- SQL server buffer overrun
These flaws may allow a user to gain elevated rights on this
Microsoft has released a set of patches for MSSQL 7 and 2000 :
High / CVSS Base Score : 8
Click HERE for more information and discussions on this network vulnerability scan.