Buffer overflow in bulk insert procedure of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows attackers with database administration privileges to execute arbitrary code via a long filename in the BULK INSERT query.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft sql server 2000 |
||
microsoft msde 2000 |