|
Family: Databases --> Category: destructive_attack
Microsoft's SQL Hello Overflow Vulnerability Scan
Vulnerability Scan Summary Microsoft's SQL Hello Overflow
Detailed Explanation for this Vulnerability Test
The remote MS SQL server is vulnerable to the Hello overflow.
A possible hacker may use this flaw to execute commands against
the remote host as LOCAL/SYSTEM, as well as read your database content.
*** This alert might be a false positive.
Solution : Install Microsoft Patch Q316333 at
http://support.microsoft.com/default.aspx?scid=kb
en-us
Q316333&sd=tech
or disable the Microsoft SQL Server service or use a firewall to protect the
MS SQL port (1433).
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|