← back
CVE-2001-0542

CVE-2001-0542

EPSS 13.6%
Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is identified by CVE-2001-0879.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=100891252317406&w=2https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-060https://exchange.xforce.ibmcloud.com/vulnerabilities/7724https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A83http://www.atstake.com/research/advisories/2001/a122001-1.txthttp://www.kb.cert.org/vuls/id/700575http://www.securityfocus.com/bid/3733