CVE-2000-1209 – Microsoft SQL Server - Payload Execution
https://notcve.org/view.php?id=CVE-2000-1209
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, and (6) Visio 2000, which allows remote attackers to gain privileges, as exploited by worms such as Voyager Alpha Force and Spida. • https://www.exploit-db.com/exploits/16395 https://www.exploit-db.com/exploits/16394 http://marc.info/?l=bugtraq&m=96333895000350&w=2 http://marc.info/?l=bugtraq&m=96593218804850&w=2 http://marc.info/?l=bugtraq&m=96644570412692&w=2 http://online.securityfocus.com/archive/1/273639 http://security-archive.merton.ox.ac.uk/bugtraq-200008/0233.html http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ313418 http://support.microsoft.com/default.aspx? •
CVE-2002-0649 – Microsoft SQL Server - Resolution Overflow (MS02-039)
https://notcve.org/view.php?id=CVE-2002-0649
Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote attackers to cause a denial of service or execute arbitrary code via UDP packets to port 1434 in which (1) a 0x04 byte that causes the SQL Monitor thread to generate a long registry key name, or (2) a 0x08 byte with a long string causes heap corruption, as exploited by the Slammer/Sapphire worm. Multiples desbordamientos de buffers en el Servicio de Resolución en SQL Server 2000 y Microsoft Desktop Engine 2000 (MSDE) permite a atacantes remotos causar una denegación de servicio o ejecutar código arbitrario mediante paquetes UDP enviados al puerto 1434 en los que (1) un byte 0x04 causa al hilo de ejecución del Monitor SQL generar un nombre de clave del registro largo, o (2) un byte 0x08 con una cadena larga causa corrupción en la pila, tal como se realiza en los exploits por el gusano Slammer/Sapphire. • https://www.exploit-db.com/exploits/16393 https://www.exploit-db.com/exploits/21652 http://marc.info/?l=bugtraq&m=102760196931518&w=2 http://marc.info/?l=ntbugtraq&m=102760479902411&w=2 http://secunia.com/advisories/7945 http://www.cert.org/advisories/CA-2002-22.html http://www.cert.org/advisories/CA-2003-04.html http://www.kb.cert.org/vuls/id/399260 http://www.kb.cert.org/vuls/id/484891 http://www.securityfocus.com/archive/1/308306/30/26180/th • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2002-0644 – Microsoft SQL Server 2000 - Database Consistency Checkers Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-0644
Buffer overflow in several Database Consistency Checkers (DBCCs) for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 allows members of the db_owner and db_ddladmin roles to execute arbitrary code. Desbordamiento de buffer en varios Comprobadores de Consistencia de Base de Datos (Database Consistency Checkers - DBCCs) en Microsoft SQL Server 2000 y Microsoft Desktop Engine (MSDE) 2000 permite a miembros de los grupos db_owner y db_ddladmin ejecutar código arbitrario. • https://www.exploit-db.com/exploits/21650 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-038 •
CVE-2002-0645
https://notcve.org/view.php?id=CVE-2002-0645
SQL injection vulnerability in stored procedures for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 may allow authenticated users to execute arbitrary commands. Vulnerabilidad de inyección de SQL en procedimientos almacenados en Microsoft SQL Server 2000 y Microsoft Desktop engine (MSDE) 2000 puede que permita a usuarios autenticados ejecutar comandos arbitrarios. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-038 •
CVE-2002-0643
https://notcve.org/view.php?id=CVE-2002-0643
The installation of Microsoft Data Engine 1.0 (MSDE 1.0), and Microsoft SQL Server 2000 creates setup.iss files with insecure permissions and does not delete them after installation, which allows local users to obtain sensitive data, including weakly encrypted passwords, to gain privileges, aka "SQL Server Installation Process May Leave Passwords on System." La instalación de Microsoft Data Engine 1.0 (MSDE 1.0), y Microsoft SQL Server 2000 crea ficheros setup.iss con permisos inseguros que no son eliminados después de la instalación, lo cual posibilita a usuarios locales la obtención de datos confidenciales, incluyendo contraseñas débilmente encriptadas, para obtener privilegios. Esta vulnerabilidad también es conocida como SQL Server Installation Process May Leave Passwords on System. • http://marc.info/?l=bugtraq&m=102640092826731&w=2 http://marc.info/?l=vuln-dev&m=102640394131103&w=2 http://www.kb.cert.org/vuls/id/338195 http://www.securityfocus.com/bid/5203 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-035 •