February 11, 2009 at 8:11 am
A new security bulletin out today discusses a vulnerability to a possible sql injection attack.
http://www.microsoft.com/technet/security/bulletin/ms09-004.mspx
Looking over this bulletin, it appears that the module affected is "sp_replwritetovarbin" extended stored procedure.
Question:
Does this bulletin only apply to systems that use replication?
Tim White
February 11, 2009 at 8:57 am
Per the bulletin and per some web searches, it applies to any system that has that proc, except those listed in the bulletin (2k5 SP3, 2k8, aren't affected, same for some 7.5 SPs). If an injection attack or malicious user with execute rights runs that proc, they can gain full system control.
- Gus "GSquared", RSVP, OODA, MAP, NMVP, FAQ, SAT, SQL, DNA, RNA, UOI, IOU, AM, PM, AD, BC, BCE, USA, UN, CF, ROFL, LOL, ETC
Property of The Thread
"Nobody knows the age of the human race, but everyone agrees it's old enough to know better." - Anon
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply