Windows : MDAC Buffer Overflow (832483)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.11990

Categoría: Windows

Título: MDAC Buffer Overflow (832483)

Resumen: NOSUMMARY

Descripción: Description:

The remote Microsoft Data Access Component (MDAC) server is vulnerable to a
flaw which could allow an attacker to execute arbitrary code on this host,
provided he can simulate responses from a SQL server.

To exploit this flaw, an attacker would need to wait for a host running
a vulnerable MDAC implementation to send a broadcast query. He would then
need to send a malicious packet pretending to come from a SQL server.

Solution : http://www.microsoft.com/technet/security/bulletin/ms04-003.mspx
Risk factor : High

Referencia Cruzada: BugTraq ID: 9407
Common Vulnerability Exposure (CVE) ID: CVE-2003-0903
http://www.securityfocus.com/bid/9407
CERT/CC vulnerability note: VU#139150
http://www.kb.cert.org/vuls/id/139150
Microsoft Security Bulletin: MS04-003
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-003
http://www.osvdb.org/3457
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A525
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A553
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A751
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A775
XForce ISS Database: mdac-broadcastrequest-bo(14187)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14187

Copyright This script is Copyright (C) 2003 Tenable Network Security

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.11990
Categoría:	Windows
Título:	MDAC Buffer Overflow (832483)
Resumen:	NOSUMMARY
Descripción:	Description: The remote Microsoft Data Access Component (MDAC) server is vulnerable to a flaw which could allow an attacker to execute arbitrary code on this host, provided he can simulate responses from a SQL server. To exploit this flaw, an attacker would need to wait for a host running a vulnerable MDAC implementation to send a broadcast query. He would then need to send a malicious packet pretending to come from a SQL server. Solution : http://www.microsoft.com/technet/security/bulletin/ms04-003.mspx Risk factor : High
Referencia Cruzada:	BugTraq ID: 9407 Common Vulnerability Exposure (CVE) ID: CVE-2003-0903 http://www.securityfocus.com/bid/9407 CERT/CC vulnerability note: VU#139150 http://www.kb.cert.org/vuls/id/139150 Microsoft Security Bulletin: MS04-003 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-003 http://www.osvdb.org/3457 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A525 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A553 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A751 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A775 XForce ISS Database: mdac-broadcastrequest-bo(14187) https://exchange.xforce.ibmcloud.com/vulnerabilities/14187
Copyright	This script is Copyright (C) 2003 Tenable Network Security