Reported August 15, 2002, by Microsoft.

VERSIONS AFFECTED

 

  • Microsoft SQL Server 2000

  • Microsoft SQL Server 7.0

  • Microsoft Desktop Engine (MSDE) 2000

  • Microsoft Desktop Engine (MSDE) 1.0

 

DESCRIPTION

A vulnerability exists in SQL Server and MSDE that can result in an unprivileged user gaining control of a database. This vulnerability stems from weak default permissions on extended stored procedures that let the unprivileged user run these stored procedures with Administrator privileges. The affected extended stored procedures are:

  • xp_execresultset

  • xp_printstatements

  • xp_displayparamstmt

 

Detailed information regarding this vulnerability is available on the discoverer’s Web site.

 

VENDOR RESPONSE

 

The vendor, Microsoft, has released Security Bulletin MS02-043 (Cumulative Patch for SQL Server) to address this vulnerability and recommends that affected users download and apply the appropriate patch mentioned in the security bulletin.

 

CREDIT
Discovered by David Litchfield of NGSSoftware.