Microsoft SQL Server 2000 Resolution Service Heap Overflow Vulnerability
Administrators are advised to:
- Ensure that all SQL Server processes are inactive before installing patches.
- Ensure that all installations of SQL server are patched.
- Reboot the system before restarting the SQL server.
Veritas Software Backup Exec 9.0 ships with some MSDE components and may therefore be prone to this vulnerability. Users are advised to apply the Microsoft fixes to address this vulnerability for Backup Exec.
A specific fix has been released for the Microsoft .NET Framework SDK. See the references for a link to Microsoft Knowledge Base article 813850 for instructions and download information.
Fixes are available.
Microsoft SQL Server 2000
Microsoft Data Engine 2000
Microsoft SQL Server 2000 SP1
Microsoft SQL Server 2000 Desktop Engine
Microsoft SQL Server 2000 SP2