Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 7.0 vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2000-1086
The xp_printstatements function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an malicious user ...
Microsoft Sql Server 7.0
Microsoft Data Engine 1.0
Microsoft Data Engine 2000
Microsoft Sql Server 2000
890
VMScore
CVE-2002-1145
The xp_runwebtask stored procedure in the Web Tasks component of Microsoft SQL Server 7.0 and 2000, Microsoft Data Engine (MSDE) 1.0, and Microsoft Desktop Engine (MSDE) 2000 can be executed by PUBLIC, which allows an malicious user to gain privileges by updating a webtask that i...
Microsoft Sql Server 7.0
Microsoft Sql Server 2000
Microsoft Data Engine 1.0
Microsoft Data Engine 2000
409
VMScore
CVE-2000-1087
The xp_proxiedmetadata function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an malicious user ...
Microsoft Data Engine 1.0
Microsoft Data Engine 2000
Microsoft Sql Server 2000
Microsoft Sql Server 7.0
445
VMScore
CVE-2001-0879
Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows malicious users to cause a denial of service.
Microsoft Sql Server 7.0
Microsoft Sql Server 2000
Microsoft Windows 2000
Microsoft Windows Nt
Microsoft Windows Xp
668
VMScore
CVE-2000-0202
Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote malicious users to gain privileges via a malformed Select statement in an SQL query.
Microsoft Data Engine 1.0
Microsoft Sql Server 7.0
445
VMScore
CVE-2001-0509
Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and previous versions, (2) Microsoft SQL Server 2000 and previous versions, (3) Windows NT 4.0, and (4) Windows 2000 allow remote malicious users to cause a denial of service via malformed inputs.
Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
Microsoft Sql Server 7.0
Microsoft Sql Server 2000
Microsoft Windows Nt 4.0
Microsoft Windows 2000 -
Microsoft Windows 2000
NA
CVE-2024-0056
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
Microsoft Sql Server 2022
Microsoft Visual Studio 2022
Microsoft Microsoft.data.sqlclient
Microsoft System.data.sqlclient
Microsoft .net Framework
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 3.5
Microsoft .net Framework 4.8.1
Microsoft .net Framework 2.0
Microsoft .net
Microsoft .net 8.0.0
1000
VMScore
CVE-2000-1209
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, a...
Compaq Insight Manager Xe 2.1b
Microsoft Data Engine 1.0
Compaq Insight Manager Xe 1.1
Compaq Insight Manager Xe 1.21
Compaq Insight Manager Xe 2.1
Compaq Insight Manager 7.0
Compaq Insight Manager Xe 2.1c
Microsoft Msde 2000
Compaq Insight Manager Xe 2.2
2 EDB exploits
668
VMScore
CVE-2002-0695
Buffer overflow in the Transact-SQL (T-SQL) OpenRowSet component of Microsoft Data Access Components (MDAC) 2.5 up to and including 2.7 for SQL Server 7.0 or 2000 allows remote malicious users to execute arbitrary code via a query that calls the OpenRowSet command.
Microsoft Data Access Components 2.1.1.3711.11
Microsoft Data Access Components 2.12.4202.3
Microsoft Data Access Components 2.6
Microsoft Data Access Components 2.5
Microsoft Data Access Components 2.7
Microsoft Data Access Components 1.5
Microsoft Microsoft Data Access Components 2.12.4292.3 Ga Clean
Microsoft Data Access Components 2.0
Microsoft Data Access Components 2.1
668
VMScore
CVE-2007-5090
Unspecified vulnerability in IBM Rational ClearQuest (CQ), when a Microsoft SQL Server or an IBM DB2 database is used, allows malicious users to corrupt data via unspecified vectors.
Ibm Rational Clearquest 5.00
Ibm Rational Clearquest 5.20
Ibm Rational Clearquest 6.00
Ibm Rational Clearquest 6.12
Ibm Rational Clearquest 6.13
Ibm Rational Clearquest 6.14
Ibm Rational Clearquest 6.15
Ibm Rational Clearquest 6.16
Ibm Rational Clearquest 7.0
Ibm Rational Clearquest 7.0.0.1
Ibm Rational Clearquest 7.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »