Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 08/07/2008 Updated: 28/02/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

SQL Server 7.0 SP4, 2000 SP4, 2005 SP1 and SP2, 2000 Desktop Engine (MSDE 2000) SP4, 2005 Express Edition SP1 and SP2, and 2000 Desktop Engine (WMSDE); Microsoft Data Engine (MSDE) 1.0 SP4; and Internal Database (WYukon) SP2 does not initialize memory pages when reallocating memory, which allows database operators to obtain sensitive information (database contents) via unknown vectors related to memory page reuse.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft data engine 1.0
microsoft sql server 7.0
microsoft sql server 2000
microsoft sql server 2005
microsoft sql server desktop engine 2000
microsoft wmsde 2000
microsoft wyukon

CWE-200 http://www.us-cert.gov/cas/techalerts/TA08-190A.html http://secunia.com/advisories/30970 http://www.securitytracker.com/id?1020441 http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html http://www.vmware.com/security/advisories/VMSA-2011-0003.html http://www.vupen.com/english/advisories/2008/2022/references https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14213 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-040 http://www.securityfocus.com/archive/1/516397/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-0085

Vulnerability Summary

References

Vulmon Search

About

Products

Connect