Description
Buffer overflow in the Database Console Command (DBCC) that handles user inputs in Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine (MSDE) 1.0 and Microsoft Desktop Engine (MSDE) 2000, allows attackers to execute arbitrary code via a long SourceDB argument in a "non-SQL OLEDB data source" such as FoxPro, a variant of CAN-2002-0644.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2626 Vulnerability (CVE-2019-2626)
WordPress Plugin Affiliates Manager SQL Injection (2.8.6)
SharePoint Authentication Bypass by Spoofing Vulnerability (CVE-2021-42320)
WordPress Plugin Social Sharing-Sassy Social Share Cross-Site Scripting (3.3.44)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1835)