MS03-031: Cumulative Patch for MS SQL Server (815495)
Medium Nessus Plugin ID 11804
SynopsisArbitrary code can be executed on the remote host through the SQL service.
DescriptionThe remote Microsoft SQL server is vulnerable to several flaws :
- Named pipe hijacking
- Named Pipe Denial of Service
- SQL server buffer overrun
These flaws could allow a user to gain elevated privileges on this host.
SolutionMicrosoft has released a set of patches for MSSQL 7 and 2000.