New Search

Convert Buffer Overrun Vulnerability in SQL Server

oval:org.mitre.oval:def:14052

Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4 2000 Desktop Engine (MSDE 2000) SP4 and 2000 Desktop Engine (WMSDE) allows remote authenticated users to execute arbitrary code via a crafted SQL expression.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows Server 2008
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2008-0086
Product(s):
  • Microsoft SQL Server 2000 Desktop Engine (WMSDE)
  • Microsoft SQL Server 2000