Oval Definition:	oval:org.mitre.oval:def:271
Revision Date: 2005-10-19 Version: 2 Title: SQL Server OpenDataSource/OpenRowset Buffer Overflow Description: Buffer overflow in SQL Server 7.0 and 2000 allows remote attackers to execute arbitrary code via a long OLE DB provider name to (1) OpenDataSource or (2) OpenRowset in an ad hoc connection. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-0056 Platform(s): Microsoft Windows 2000 Product(s): Microsoft SQL Server 2000 Definition Synopsis SQL Server 2000 is installed AND File sqlservr.exe version3 is less than 2000.80.578.0 AND File xpstar.dll version3 is less than 2000.80.561.0
BACK