Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs  Black Box Testing  Vulnerability Assessment  Vulnerability Scanner SecuriTeam™ in Your Inbox   E-mail this article to a friend New vulnerability? New tool? Tell us	Vulnerabilities in Microsoft SQL Server Allows Elevation of Privilege (MS08-040) 9 Jul. 2008    Summary This security update resolves four privately disclosed vulnerabilities. The more serious of the vulnerabilities could allow an attacker to run code and to take complete control of an affected system. An authenticated attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights. This security update is rated Important for supported releases of SQL Server 7.0, SQL Server 2000, SQL Server 2005, Microsoft Data Engine (MSDE) 1.0, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000), Microsoft SQL Server 2005 Express Edition, Microsoft SQL Server 2000 Desktop Engine (WMSDE), and Windows Internal Database (WYukon). For more information, see the subsection, Affected and Non-Affected Software, in this section.   Credit: The information has been provided by Microsoft Product Security. The original article can be found at: http://www.microsoft.com/technet/security/bulletin/ms08-040.mspx    Details Audit your web server for security holes - see what the hackers see. Sign up for a scan today - risk free! Affected Software:  * SQL Server 7.0 Service Pack 4 (KB948113) - SQL Server 7.0 Service Pack 4 (KB948113) - Elevation of Privilege - Important - None  * SQL Server 2000 Service Pack 4 (KB948110) - SQL Server 2000 Service Pack 4 (KB948111) - Elevation of Privilege - Important - None  * SQL Server 2000 Itanium-based Edition Service Pack 4 (KB948110) - SQL Server 2000 Itanium-based Edition Service Pack 4 (KB948111) - Elevation of Privilege - Important - None  * SQL Server 2005 Service Pack 2 (KB948109) - SQL Server 2005 Service Pack 2 (KB948108) - Elevation of Privilege - Important - None  * SQL Server 2005 x64 Edition Service Pack 2 (KB948109) - SQL Server 2005 x64 Edition Service Pack 2 (KB948108) - Elevation of Privilege - Important - None  * SQL Server 2005 with SP2 for Itanium-based Systems (KB948109) - SQL Server 2005 with SP2 for Itanium-based Systems (KB948108) - Elevation of Privilege - Important - None  * Microsoft Data Engine (MSDE) 1.0 Service Pack 4 (KB948113) - Microsoft Data Engine (MSDE) 1.0 Service Pack 4 (KB948113) - Elevation of Privilege - Important - None  * Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) Service Pack 4 (KB948110) - Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) Service Pack 4 (KB948111) - Elevation of Privilege - Important - None  * Microsoft SQL Server 2005 Express Edition Service Pack 2 (KB948109) - Microsoft SQL Server 2005 Express Edition Service Pack 2 (KB948108) - Elevation of Privilege - Important - None  * Microsoft SQL Server 2005 Express Edition with Advanced Services Service Pack 2 (KB948109) - Microsoft SQL Server 2005 Express Edition with Advanced Services Service Pack 2 (KB948108) - Elevation of Privilege - Important - None Windows Components:  * Microsoft Windows 2000 Service Pack 4 - Microsoft SQL Server 2000 Desktop Engine (WMSDE) (KB948110) - Elevation of Privilege - Important - None  * Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Microsoft SQL Server 2000 Desktop Engine (WMSDE) (KB948110) - Elevation of Privilege - Important - None  * Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Windows Internal Database (WYukon) Service Pack 2 (KB948109) - Elevation of Privilege - Important - None  * Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Microsoft SQL Server 2000 Desktop Engine (WMSDE) (KB948110) - Elevation of Privilege - Important - None  * Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Windows Internal Database (WYukon) x64 Edition Service Pack 2 (KB948109) - Elevation of Privilege - Important - None  * Windows Server 2008 for 32-bit Systems* - Windows Internal Database (WYukon) Service Pack 2 (KB948109) - Elevation of Privilege - Important - None  * Windows Server 2008 for x64-based Systems* - Windows Internal Database (WYukon) x64 Edition Service Pack 2 (KB948109) - Elevation of Privilege - Important - None *Windows Server 2008 server core installation affected. For supported editions of Windows Server 2008, this update applies, with the same severity rating, whether or not Windows Server 2008 was installed using the Server Core installation option. Memory Page Reuse Vulnerability - CVE-2008-0085 An information disclosure vulnerability exists in the way that SQL Server manages memory page reuse. An attacker with database operator access who successfully exploited this vulnerability could access customer data. CVE Information: CVE-2008-0085 Convert Buffer Overrun - CVE-2008-0086 A vulnerability exists in the convert function in SQL Server that could allow an authenticated attacker to gain elevation of privilege. An attacker who successfully exploited this vulnerability could run code and take complete control of the system. CVE Information: CVE-2008-0086 SQL Server Memory Corruption Vulnerability - CVE-2008-0107 A vulnerability exists in SQL Server that could allow an authenticated attacker to gain elevation of privilege. An attacker who successfully exploited this vulnerability could run code and take complete control of the system. CVE Information: CVE-2008-0107 SQL Server Buffer Overrun Vulnerability - CVE-2008-0106 A vulnerability exists in SQL Server that could allow an authenticated attacker to gain elevation of privilege. An attacker who successfully exploited this vulnerability could run code and take complete control of the system. CVE Information: CVE-2008-0106  Comments:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Related Articles Microsoft ASP.NET ValidateRequest Filters Bypassing Allows XSS And HTML Injection Attacks Kyocera Mita Scanner File Utility (Multiple) Novell iPrint Client ActiveX Control Multiple Vulnerabilities DriveCrypt Security Model Bypass and Incorrect BIOS API Usage Windows Media Services (nskey.dll) CallHTMLHelp Buffer Overflow Trend Micro Products Web Management Authentication Bypass Anzio Web Print Object Buffer Overflow Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass (MS08-043) Microsoft Windows Messenger Illegal Access Vulnerability (MS08-050) MicroWorld MailScan - Multiple Vulnerabilities within Admin-Webinterface Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability Vulnerability in Cisco WebEx Meeting Manager ActiveX Control Cumulative Security Update for Internet Explorer (MS08-045) Vulnerability in Microsoft Word Allows Code Execution (MS08-042) Vulnerability in the Snapshot Viewer ActiveX Control for Microsoft Access Allows Code Execution (MS08-041)  Featured Articles Microsoft ASP.NET ValidateRequest Filters Bypassing Allows XSS And HTML Injection Attacks vBulletin Cross Site Scripting Vulnerability (popup) Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass (MS08-043) MicroWorld MailScan - Multiple Vulnerabilities within Admin-Webinterface Sun xVM VirtualBox Privilege Escalation Vulnerability Vulnerabilities in DNS Allows Spoofing (MS08-037) Vulnerabilities in Microsoft SQL Server Allows Elevation of Privilege (MS08-040)
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © 1998-2008 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®