Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs

Microsoft SQL Server Xp_sprintf buffer overflow

In versions of SQL Server earlier than Release 6.5, Service Pack 5 the extended stored procedure xp_sprintf can be exploited using buffer overflows. An attacker can use xp_sprintf to crash the server or to possibly gain administrator privileges on the system running SQL Server.







 

Privacy Statement
Copyright 2009, SecurityFocus