Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:3083
HistoryJun 14, 2002 - 12:00 a.m.

Microsoft SQL Server 2000 pwdencrypt() buffer overflow

2002-06-1400:00:00
vulners.com
26
JSON

Microsoft SQL Server 2000 (up to SP2) suffers from buffer/heap overflow in

built-in hashing function pwdencrypt(). Sample code shown below crashes

SQL Server service and may lead to arbitrary code execution:

SELECT pwdencrypt(REPLICATE('A',353))

On some systems it may require lager amount of characters to cause

overflow (1000 is enough in any case)

This was confirmed by Microsoft but is not known when the patch will be

released.

Cheers

Martin Rakhmanoff (jimmers)

[email protected]

JSON