SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Database)  >   Microsoft SQL Server Vendors:   Microsoft
Microsoft SQL Server Bugs Let Remote Authenticated Users Gain Privilege Escalation and Execute Arbitrary Code
SecurityTracker Alert ID:  1032893
SecurityTracker URL:  http://securitytracker.com/id/1032893
CVE Reference:   CVE-2015-1761, CVE-2015-1762, CVE-2015-1763   (Links to External Site)
Date:  Jul 14 2015
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2008 SP3, 2008 SP4, 2008 R2 SP2, 2008 R2 SP3, 2012 SP1, 2012 SP2, 2014
Description:   Several vulnerabilities were reported in Microsoft SQL Server. A remote authenticated user can gain elevated privileges. A remote authenticated user can execute arbitrary code on the target system.

A remote authenticated user can send specially crafted SQL data to trigger a pointer casting error and gain elevated privileges on the target database [CVE-2015-1761]. This can be exploited to view, change, or delete data and to create new accounts.

A remote authenticated privileged user can send a specially crafted SQL query to trigger a function call initialization error and execute arbitrary code on the target system [CVE-2015-1762]. This can be exploited to install programs, view, change, or delete data, or create new accounts.

Servers that have special permission settings (e.g., VIEW SERVER STATE) enabled are affected.

A remote authenticated user can send a specially crafted SQL query to trigger a function call initialization error and execute arbitrary code on the target system [CVE-2015-1763]. This can be exploited to install programs, view, change, or delete data, or create new accounts.

Impact:   A remote authenticated user can gain elevated privileges on the target system.

A remote authenticated user can execute arbitrary code on the target system.

Solution:   The vendor has issued a fix.

A patch matrix is available in the vendor's advisory.

A restart may be required.

The Microsoft advisory is available at:

https://technet.microsoft.com/library/security/ms15-058

Vendor URL:  technet.microsoft.com/library/security/ms15-058 (Links to External Site)
Cause:   Access control error
Underlying OS:  Windows (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Jan 31 2017 (HPE Issues Fix for HPE Intelligent Management Center (iMC) PLAT) Microsoft SQL Server Bugs Let Remote Authenticated Users Gain Privilege Escalation and Execute Arbitrary Code
HPE has issued a fix for HPE Intelligent Management Center (iMC) PLAT.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC