4 results (0.004 seconds)

CVSS: 7.5EPSS: 11%CPEs: 15EXPL: 0

Buffer overflow in a component of SQL-DMO for Microsoft Data Access Components (MDAC) 2.5 through 2.7 allows remote attackers to execute arbitrary code via a long response to a broadcast request to UDP port 1434. Desbordamientos de búfer en cierto componente de Microsoft Data Access Components (MDAC) 2.5 a 2.7 permite a atacantes remotos ejecutar código arbitrario mediante una cierta respuesta a una dirección de multidifusión. • http://marc.info/?l=bugtraq&m=106149556627778&w=2 http://marc.info/?l=ntbugtraq&m=106251069107953&w=2 http://www.securityfocus.com/bid/8455 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-033 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1039 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6954 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A961 http •

CVSS: 7.5EPSS: 87%CPEs: 11EXPL: 1

Heap-based buffer overflow in the Remote Data Services (RDS) component of Microsoft Data Access Components (MDAC) 2.1 through 2.6, and Internet Explorer 5.01 through 6.0, allows remote attackers to execute code via a malformed HTTP request to the Data Stub. Desbordamiento de búfer basado en la pila en el componente Remote Data Services (RDS) - Servicios de Datos Remotos de Microsoft Data Access Components (MDAC) 2.1 a 2.6, y en Internet Explorer 5.01 a 6.0 permite a atacantes remotos ejecutar código mediante una petición HTTP malformada al tocón (stub de datos). • https://www.exploit-db.com/exploits/19026 http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0082.html http://www.cert.org/advisories/CA-2002-33.html http://www.foundstone.com/knowledge/randd-advisories-display.html?id=337 http://www.kb.cert.org/vuls/id/542081 http://www.securityfocus.com/bid/6214 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-065 https://exchange.xforce.ibmcloud.com/vulnerabilities/10659 https://exchange.xforce.ibmcloud.com/vuln •

CVSS: 7.5EPSS: 7%CPEs: 16EXPL: 0

Buffer overflow in the Transact-SQL (T-SQL) OpenRowSet component of Microsoft Data Access Components (MDAC) 2.5 through 2.7 for SQL Server 7.0 or 2000 allows remote attackers to execute arbitrary code via a query that calls the OpenRowSet command. Desbordamiento de búfer en el componente Transact-SQL (T-SQL) OpenRowSet de Microsoft Data Access Components (MDAC), versiones 2.5 hasta 2.7 para SQL Server 7.0 ó 2000 permite que atacantes remotos ejecuten código arbitrario por medio de una sentencia que llama al comando OpenRowSet. • http://www.iss.net/security_center/static/9734.php http://www.nextgenss.com/advisories/mssql-ors.txt http://www.securityfocus.com/bid/5372 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-040 •

CVSS: 10.0EPSS: 68%CPEs: 7EXPL: 2

The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands. • https://www.exploit-db.com/exploits/19425 https://www.exploit-db.com/exploits/19424 http://www.ciac.org/ciac/bulletins/j-054.shtml http://www.osvdb.org/272 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-004 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-025 https://www.securityfocus.com/bid/529 - • CWE-264: Permissions, Privileges, and Access Controls •