|
Buffer Overruns in SQL Server 2000 Resolution Service Could Enable Code Execution (Q323875) ... Microsoft Security Bulletin MS02-039 Buffer Overruns in SQL Server 2000 Resolution ... http://www.microsoft.com/technet/security/bulletin/ms02-039.mspxSQL Server 2000 introduces the ability to host multiple instances of SQL Server on a single physical computer. Each instance operates for all intents and purposes as though it was ... http://support.microsoft.com/kb/323875Vulnerability Identifier: CAN-2002-0649,CAN-2002-0650 Discovery Date: Jul 24, 2002 Risk: Critical Related Malware: http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=MS02-039_SQL_SERVER_RESOLUTION_EXPLOITThis download addresses three vulnerabilities, the most serious of which could enable an attacker to gain control over an affected server. http://www.microsoft.com/Downloads/details.aspx?FamilyID=dcfdcbe9-b4eb-4446-9be7-2de45cfa6a89&DisplayLang=enDescription: This is a proof-of-concept Trojan that attempts to demonstrate a denial of service (DoS) attack via SQL Server Resolution Service. http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ_MS02.039Overview: Alias: Trojan Horse.LC [Panda] Category: Exploit: A way of breaking into a system. An exploit takes advantage of a weakness in a system in order to hack it. http://www.pestpatrol.com/zks/pestinfo/e/exploit_win32_ms02-039.aspArchive] MS02-039 Buffer Overruns in SQL Server 2000 Virus Discussions & Removal Assistance ... I ran the virus check at www.antivirus.com because my McAfee virus scan would not ... http://community.mcafee.com/archive/index.php/t-158587.htmlThe VIPRE&trade & CounterSpy? antispyware research center reports the latest spyware threats, updates to the spyware definition database, and offers the opportunity to report new ... http://research.sunbelt-software.com/threatdisplay.aspx?name=Exploit.Win32.MS02-039&threatid=67205SQL Server 2000 and MSDE 2000 introduce the ability to host multiple instances of SQL Server on a single physical machine. Each instance operates for all intents and purposes as ... http://www.tacktech.com/news.cfm?subtype=Tech&nid=161MS02-039: buffer overruns in Structured Query Language Server 2000 resolution service could enable code execution. (Microsoft: security alerts and advisories issued).(Brief Article ... http://findarticles.com/p/articles/mi_hb5697/is_200209/ai_n23737516Description: Microsoft SQL Server 2000 is vulnerable to multiple vulnerabilities, which are addressed in the patch released with Microsoft Security Bulletin MS02-039. http://xforce.iss.net/xforce/xfdb/9666Revision 4154, 2.4 kB (checked in by hdm, 2 years ago) Reference updates . Property svn:eol-style set to native; Property svn:keywords set to Author Date Id Revision http://metasploit.com/dev/trac/browser/framework3/trunk/modules/exploits/windows/mssql/ms02_039_slammer.rb?rev=4154There is an error inthe installation instructions within the README file, in SQL patch MS02-039. Within the standard installation section, the instructions specify to copy the ... http://www.sqlsecurity.com/Community/Discussions/tabid/68/forumid/1/postid/170/view/topic/Default.aspxBugtraq: Microsoft Security Bulletin MS02-039: Buffer Overruns in SQL Server 2000 Resolution Service Could Enable Code Execution (Q323875) (fwd) http://seclists.org/bugtraq/2002/Jul/0288.htmlRevision 4419, 2.7 kB (checked in by hdm, 2 years ago) Adding an Id tag and a standard header to all modules . Property svn:eol-style set to native; Property svn:keywords set to ... http://metasploit.com/dev/trac/browser/framework3/trunk/modules/exploits/windows/mssql/ms02_039_slammer.rb?rev=4419These vulnerabilities were discovered and publicly announced by Microsoft in their Microsoft Security Bulletins MS02-039, MS02-056, and MS02-061. http://www.cisco.com/en/US/products/products_security_advisory09186a00801334af.shtmlIn July 2002, Microsoft issued Microsoft Security Bulletin MS02-039 to address a buffer overflow issue with SQL Server's Resolution Service, which listens on UDP port 1434. http://www.netiq.com/support/sa/sqlslammer.aspMicrosoft Security Bulletin MS02-039 http://www.microsoft.com/technet/security/bulletin/MS02-039.mspx (http://www.microsoft.com/technet/security/bulletin/MS02-039.mspx) http://support.microsoft.com/kb/813440Privacy and Legal Notice INFORMATION BULLETIN M-102: Microsoft SQL Server 2000 Resolution Service Buffer Overflow Vulnerabilities [Microsoft Security Bulletin MS02-039] http://www.ciac.org/ciac/bulletins/m-102.shtml ... that all the users of either Microsoft SQL Server 2000 or MSDE 2000 audit their computers for the vulnerabilities that are referred to in Microsoft Security Bulletin MS02-039 and ... http://www.symantec.com/security_response/writeup.jsp?docid=2003-012502-3306-99Microsoft Security Bulletin - Buffer Overruns in SQL Server 2000 Resolution Service Could Enable Code Execution (MS02-039)-----BEGIN PGP SIGNED MESSAGE ... http://www.net-security.org/advisory.php?id=876Security Bulletin MS02-039: Critical Vulnerabilities in the SQL Server 2000 Resolution Service rity/bulletin/MS02-039.asp> Normally, clients communicate with a SQL Server using the ... http://www.amdex.com/gd_kb_alerts.php?action=readAlert&id=55This vulnerability was originally addressed by Microsoft in Security Bulletin MS02-039. In January 2003, Microsoft updated MS02-039 to recommend that customers apply the patch ... http://www.kb.cert.org/vuls/id/399260This vulnerability was originally addressed by Microsoft in Security Bulletin MS02-039. In January 2003, Microsoft updated MS02-039 to recommend that customers apply the patch ... http://www.kb.cert.org/vuls/id/484891?????????????????????????????????????????????????????????? ... http://www.trendmicro.co.jp/vinfo/secadvisories/default6.asp?VName=MS02%2D039%5FSQL%5FSERVER%5FRESOLUTION%5FEXPLOIThttp://www.microsoft.com/technet/security/Bulletin/MS02-039.mspx http://www.securityfocus.com/bid/5311 http://www.securityfocus.com/bid/5310 http://www.cve.mitre.org/cgi-bin/cvename ... http://www.fortiguardcenter.com/ids/VID11743After removing the worm you should read the security bulletins and, where appropriate, install the Microsoft patches MS04-011, MS03-039, MS03-007, MS01-059, MS02-039, MS02 ... http://www.sophos.com/support/disinfection/rbotek.htmlMS02-039), SRVSVC (MS06-040) and Realcast - to network shares protected by weak passwords The following patches for the operating system vulnerabilities exploited by the http://www.sophos.com/security/analyses/w32rbotfmo.htmlThe Slammer worm propagates via Microsoft SQL installations without patches from Microsoft Security Bulletin MS02-039 or higher. The main function of the Slammer worm is to ... http://www.iss.net/threats/advise140.htmlMicrosoft originally provided a patch for this vulnerability in MS02-007, MS02-020, MS02-034, MS02-038, MS02-039, MS02-043, MS02-056, and MS02-061, but they were superseded by the ... http://xforce.iss.net/xforce/xfdb/8243 |
|