Vulnerability Name:

CCN-11211

Published:2003-01-14
Updated:2003-01-14
Summary:SQL Server allows disabling cross-database ownership chaining at the database level. Microsoft SQL Server uses cross-database ownership chaining when a source object depends on target objects in another database and all objects are linked to the same login account. When cross-database ownership is used, only permissions on the source objects are checked. If Cross-DB ownership chaining is enabled for a database, the database owner and members of the db_owner and db_ddladmin role could potentially access data in another database (including the master database) because they can create objects that are owned by other users. Users with CREATE DATABASE permissions could also access data in other databases from newly created or attached databases.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Consequences:Gain Access
References:Source: XF
Type: UNKNOWN
mssql-crossdatabase-unauthorized-access(11211)

Source: CCN
Type: Microsoft Knowledge Base Article 810474
INF: Cross-Database Ownership Chaining Behavior Changes in SQL Server 2000 Service Pack 3

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:microsoft:sql_server:*:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:sql_server:2000:sp3:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    microsoft sql server *
    microsoft sql server 2000 sp3