Microsoft Data Access Components 2.7 Unchecked Buffer Vulnerability Patch

The Microsoft Data Access Components (MDAC) provide a number of supporting technologies for accessing and using databases. Included among these functions is the underlying support for the T-SQL OpenRowSet command. A security vulnerability results because the MDAC functions underlying OpenRowSet contain an unchecked buffer. An attacker who successfully exploited it would be able to take action with all the privileges of an affected SQL Server. At a minimum, this would grant the attacker complete control over the database, and potentially could grant administrative privileges at the operating system level as well.
LicenseFree
File Size224.88 kB
VersionMS02-040
Operating System Windows NT Windows Me Windows 98 Windows 95 Windows Windows 2000
System RequirementsWindows 95/98/Me/NT/2000, Microsoft Data Access Components 2.7 RTM or Refresh

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
See All
See All