Family: Windows : Microsoft Bulletins --> Category: infos
MDAC Buffer Overflow (832483) Vulnerability Scan
Vulnerability Scan Summary
Checks the version of MDAC
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through MDAC server.
The remote Microsoft Data Access Component (MDAC) server is vulnerable to a
flaw which could allow a possible hacker to execute arbitrary code on this host,
provided he can simulate responses from a SQL server.
To exploit this flaw, a possible hacker would need to wait for a host running
a vulnerable MDAC implementation to send a broadcast query. He would then
need to send a malicious packet pretending to come from a SQL server.
Microsoft has released a set of patches for Windows 2000, XP and 2003 :
High / CVSS Base Score : 8
Click HERE for more information and discussions on this network vulnerability scan.