SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Vulnerability in Windows Common Controls Could Allow Remote Code Execution


Vulnerability in Windows Common Controls Could Allow Remote Code Execution

Author
Message
wdolby
wdolby
SSC Veteran
SSC Veteran (207 reputation)SSC Veteran (207 reputation)SSC Veteran (207 reputation)SSC Veteran (207 reputation)SSC Veteran (207 reputation)SSC Veteran (207 reputation)SSC Veteran (207 reputation)SSC Veteran (207 reputation)

Group: General Forum Members
Points: 207 Visits: 541
MS12-060, KB2687441.

http://technet.microsoft.com/en-us/security/bulletin/ms12-060
http://support.microsoft.com/kb/2687441#AppliesToProducts

I am researching applying this patch and wanted to see if others have installed this. When reading the Microsoft Article, it indicates that the affected Office 2007 components are installed with SQL 2005/08 by default. Some other sites stated that this patch only needs to be applied if Office is installed on the SQL Server. Please let me know if you have installed this and your experience with it.

Thanks!
Hemant.R
Hemant.R
Old Hand
Old Hand (370 reputation)Old Hand (370 reputation)Old Hand (370 reputation)Old Hand (370 reputation)Old Hand (370 reputation)Old Hand (370 reputation)Old Hand (370 reputation)Old Hand (370 reputation)

Group: General Forum Members
Points: 370 Visits: 240
you can start sql service using low priviledge user ,

also you can remove rights of user which having access on sql server installation folder

check cmdshell is not enable.
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum

































































































































































SQLServerCentral


Search