'

Microsoft Data Access Components 2.6 Unchecked Buffer Vulnerability Patch

The Microsoft Data Access Components (MDAC) provide a number of supporting technologies for accessing and using databases. Included among these functions is the underlying support for the T-SQL OpenRowSet command. A security vulnerability results because the MDAC functions underlying OpenRowSet contain an unchecked buffer. An attacker who successfully exploited it would be able to take action with all the privileges of an affected SQL Server. At a minimum, this would grant the attacker complete control over the database, and potentially could grant administrative privileges at the operating system level as well.
LicenseFree
File Size230.88 kB
VersionMS02-040
Operating System Windows 2000 Windows NT Windows Me Windows 95 Windows 98 Windows
System RequirementsWindows 95/98/Me/NT/2000, Microsoft Data Access Components 2.6 Service Pack 2