Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

microsoft sql server 2000 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2008-0085
SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 does not initialize memory pages when reallocating...
Microsoft Data Engine 1.0Microsoft Sql Server 7.0Microsoft Sql Server 2000Microsoft Sql Server 2005Microsoft Sql Server Desktop Engine 2000Microsoft Wmsde 2000Microsoft Wyukon
NA
CVE-2008-0107
Integer underflow in SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 allows remote authenticated users...
Microsoft Sql Server 7.0Microsoft Sql Server 2000Microsoft Sql Server 2005Microsoft Sql Server Desktop Engine 2000Microsoft Data Engine 1.0Microsoft Wmsde 2000Microsoft WyukonMicrosoft Windows Server 2008
NA
CVE-2008-0106
Buffer overflow in Microsoft SQL Server 2005 SP1 and SP2, and 2005 Express Edition SP1 and SP2, allows remote authenticated users to execute arbitrary code via a crafted insert statement....
Microsoft Sql Server 7.0Microsoft Sql Server Desktop Engine 2000Microsoft Sql Server Express Edition 2005Microsoft Data Engine 1.0Microsoft Sql Server 2000Microsoft Sql Server 2005
NA
CVE-2008-0086
Buffer overflow in the convert function in Microsoft SQL Server 2000 SP4, 2000 Desktop Engine (MSDE 2000) SP4, and 2000 Desktop Engine (WMSDE) allows remote authenticated users to execute arbitrary code via a crafted SQL expression....
Microsoft Sql Server 7.0Microsoft Sql Server Desktop Engine 2000Microsoft Sql Server 2000Microsoft Sql Server 2005Microsoft Sql Server Express Edition 2005Microsoft Data Engine 1.0
NA
CVE-2002-0224
The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Microsoft IIS 5.0 and SQL Server 6.5 through SQL 2000 0.0 allows remote attackers to cause a denial of service (crash or hang) via malformed (random) input....
Microsoft Sql Server 2000Microsoft Sql Server 6.5Microsoft Sql Server 7.0Microsoft Internet Information Services 5.0Microsoft Windows 2000
NA
CVE-2002-0056
Buffer overflow in SQL Server 7.0 and 2000 allows remote attackers to execute arbitrary code via a long OLE DB provider name to (1) OpenDataSource or (2) OpenRowset in an ad hoc connection....
Microsoft Sql Server 2000Microsoft Sql Server 7.0
NA
CVE-2008-5416
Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine (MSDE 2000) SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine (WMSDE) on Windows Server 2003 SP1 and SP2; and Windows Internal...
Microsoft Sql Server 2000Microsoft Sql Server 2005
NA
CVE-2002-1872
Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password....
Microsoft Sql Server 7.0Microsoft Sql Server 2000Microsoft Sql Server 6.5Microsoft Sql Server 6.0
NA
CVE-2012-2552
Cross-site scripting (XSS) vulnerability in the SQL Server Report Manager in Microsoft SQL Server 2000 Reporting Services SP2 and SQL Server 2005 SP4, 2008 SP2 and SP3, 2008 R2 SP1, and 2012 allows remote attackers to inject arbitrary web script or HTML via an unspecified...
Microsoft Sql Server 2005Microsoft Sql Server 2008Microsoft Sql Server 2012Microsoft Sql Server Reporting Services 2000
NA
CVE-2001-0542
Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is...
Microsoft Sql Server 2000Microsoft Sql Server 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-4518malicious code‎validationCVE-2023-42916template injectionCVE-2023-41266CVE-2023-43089CVE-2023-5995CVE-2023-21746
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook