Page 4 of 37 results (0.016 seconds)

CVSS: 5.0EPSS: 6%CPEs: 12EXPL: 0

The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Microsoft IIS 5.0 and SQL Server 6.5 through SQL 2000 0.0 allows remote attackers to cause a denial of service (crash or hang) via malformed (random) input. El MSDTC (Microsoft Distributed Transaction Service Coordinator) para MS Windows 2000, MS IIS 5.0 y SQL Server 6.5 a 2000 permite a atacantes remotos causar una denegación de servicio (caída o cuelgue) mediante entradas malformadas (aleatorias). • http://online.securityfocus.com/archive/1/253360 http://online.securityfocus.com/archive/1/268593 http://www.iss.net/security_center/static/8046.php http://www.securityfocus.com/bid/4006 •

CVSS: 7.5EPSS: 6%CPEs: 7EXPL: 0

Buffer overflows in extended stored procedures for Microsoft SQL Server 7.0 and 2000 allow remote attackers to cause a denial of service or execute arbitrary code via a database query with certain long arguments. Desbordamiento de buffer en procedimientos almacenados extendidos en Microsoft SQL Server 7.0 y 2000 permiten a atacantes remotos causar una denegación de servicio o ejecutar código arbitrario mediante una consulta a la base de datos con unos ciertos argumentos largos. • http://marc.info/?l=bugtraq&m=101535353331625&w=2 http://www.cert.org/advisories/CA-2002-22.html http://www.kb.cert.org/vuls/id/627275 http://www.securityfocus.com/archive/1/261775 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-020 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A121 •

CVSS: 7.5EPSS: 9%CPEs: 2EXPL: 0

Buffer overflow in SQL Server 7.0 and 2000 allows remote attackers to execute arbitrary code via a long OLE DB provider name to (1) OpenDataSource or (2) OpenRowset in an ad hoc connection. Desbordamiento de búfer enSQL Server 7.0 y 2000 permite a atacantes remotos ejecutar código arbitrario mediante un nombre largo de proveedor OLE DB a: (1) OpenDataSource o(2) OpenRowset en una conexión ad hoc. • http://marc.info/?l=bugtraq&m=101422555428036&w=2 http://marc.info/?l=vuln-dev&m=101413924631329&w=2 http://www.kb.cert.org/vuls/id/619707 http://www.securityfocus.com/bid/4135 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-007 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A271 •

CVSS: 7.5EPSS: 17%CPEs: 2EXPL: 0

Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is identified by CVE-2001-0879. Desbordamiento de buffer en MS SQL Server 7.0 y 2000 permite a atacantes con acceso al servidor SQL ejecutar código arbitrario por medio de las funciones 1) raiserror, (2) formatmessage, o (3) xp_sprintf. • http://marc.info/?l=bugtraq&m=100891252317406&w=2 http://www.atstake.com/research/advisories/2001/a122001-1.txt http://www.kb.cert.org/vuls/id/700575 http://www.securityfocus.com/bid/3733 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-060 https://exchange.xforce.ibmcloud.com/vulnerabilities/7724 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A83 •

CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0

Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows attackers to cause a denial of service. Vulnerabilidad de cadena formateada en las funciones de ejecución C en SQL Server 7.0 y 2000 permite a atacantes remotos provocar una denegación de servicio. • http://marc.info/?l=bugtraq&m=100891252317406&w=2 http://www.atstake.com/research/advisories/2001/a122001-1.txt http://www.securityfocus.com/bid/3732 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-060 https://exchange.xforce.ibmcloud.com/vulnerabilities/7725 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A253 •