Summary
The remote SQL server seems to be vulnerable to the SQL abuse vulnerability described in technet article Q256052. This problem allows an attacker who has to ability to execute SQL queries on this host to gain elevated privileges.
Solution
http://support.microsoft.com/default.aspx?scid=kb
en-us
256052
Reference : http://online.securityfocus.com/archive/1/285915 Reference : http://online.securityfocus.com/advisories/4308
Severity
Classification
-
CVE CVE-2002-0642 -
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Microsoft Windows2k3 Active Directory 'BROWSER ELECTION' Buffer Overflow Vulnerability
- Microsoft Windows IPv4 Default Configuration Security Bypass Vulnerability
- Microsoft Autorun Arbitrary Code Execution Vulnerability (08-038)
- Microsoft Windows ActiveX Control Multiple Vulnerabilities (2820197)
- The remote host is infected by a virus