This script is Copyright (C) 2003-2013 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through the SQL
The remote Microsoft SQL server is vulnerable to several flaws :
- Named pipe hijacking
- Named Pipe Denial of Service
- SQL server buffer overrun
These flaws could allow a user to gain elevated privileges on this
See also :
Microsoft has released a set of patches for MSSQL 7 and 2000.
Risk factor :
Medium / CVSS Base Score : 4.6
CVSS Temporal Score : 3.8
Public Exploit Available : true