Published: 09/01/2001 Updated: 12/10/2018

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 465

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

The xp_peekqueue function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an malicious user to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft data engine 1.0
microsoft data engine 2000
microsoft sql server 2000
microsoft sql server 7.0

source: wwwsecurityfocuscom/bid/2040/info The API Srv_paraminfo(), which is implemented by Extended Stored Procedures (XPs) in Microsoft SQL Server and Data Engine, is susceptible to a buffer overflow vulnerability which may cause the application to fail or arbitrary code to be executed on the target system depending on the data entered i ...

NVD-CWE-Other http://www.securityfocus.com/bid/2040 http://marc.info/?l=bugtraq&m=97570884410184&w=2 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-092 https://nvd.nist.gov https://www.exploit-db.com/exploits/20457/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2000-1085

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect