Oval Definition:oval:org.mitre.oval:def:6217
Revision Date:2013-10-07Version:11
Title:SQL Server sp_replwritetovarbin Limited Memory Overwrite Vulnerability
Description:Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine (MSDE 2000) SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine (WMSDE) on Windows Server 2003 SP1 and SP2; and Windows Internal Database (WYukon) SP2 allows remote authenticated users to cause a denial of service (access violation exception) or execute arbitrary code by calling the sp_replwritetovarbin extended stored procedure with a set of invalid parameters that trigger memory overwrite, aka "SQL Server sp_replwritetovarbin Limited Memory Overwrite Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2008-5416
Platform(s):Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Product(s):Microsoft SQL Server 2000
Microsoft SQL Server 2000 Desktop Engine (WMSDE)
Microsoft SQL Server 2005
Windows Internal Database (WYukon)
Definition Synopsis
  • SQL Server 2000 SP4 32-bit editions - GDR
  • SQL Server 2000 is installed
  • AND SQL Server 2000 GDR - the version of sqlservr.exe is greater than 2000.80.2000.0
  • AND the version of sqlservr.exe is less than 2000.80.2055.0
  • OR SQL Server 2000 SP4 32-bit editions - QFE
  • SQL Server 2000 is installed
  • AND SQL Server 2000 GDR - the version of sqlservr.exe is greater than 2000.80.2000.0
  • AND the version of sqlservr.exe is less than 2000.80.2282.0
  • OR SQL Server 2005 SP2 - GDR
  • Microsoft SQL Server 2005 SP2 is installed
  • AND the version of sqlservr.exe is less than 2005.90.3077.0
  • AND The version of Sqlservr.exe is greater than or equal to 2005.90.3042.0
  • Microsoft SQL Server 2005 is installed
  • AND HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\90\DTS\Setup\\SP equals 2
  • AND SQL Server 2005 GDR - the version of msdtssrvr.exe is greater than 9.0.3000.0
  • AND the version of msdtssrvr.exe is less than 9.0.3077.0
  • OR SQL Server 2005 SP2 - QFE
  • Microsoft SQL Server 2005 SP2 is installed
  • AND the version of sqlservr.exe is less than 2005.90.3310.0
  • AND The version of Sqlservr.exe is greater than or equal to 2005.90.3150.0
  • Microsoft SQL Server 2005 is installed
  • AND HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\90\DTS\Setup\\SP equals 2
  • AND SQL Server 2005 QFE - the version of msdtssrvr.exe is greater than 9.0.3300.0
  • AND the version of msdtssrvr.exe is less than 9.0.3310.0
    • BACK