Re: sp_replwritetovarbin memory overwrite Security threat
- From: "Chris Wood" <anonymous@xxxxxxxxxxxxx>
- Date: Thu, 5 Feb 2009 14:13:34 -0700
There is an SQL security bulletin expected next Tuesday. Sounds like it
might be this one.
Chris
"Chris Wood" <anonymous@xxxxxxxxxxxxx> wrote in message
news:%23auo7XqcJHA.1532@xxxxxxxxxxxxxxxxxxxxxxx
Joe,
Seems that it didn't make a security bulletin this month.
Chris
"Chris Wood" <anonymous@xxxxxxxxxxxxx> wrote in message
news:uk19m7QZJHA.5772@xxxxxxxxxxxxxxxxxxxxxxx
Joe,
Microsoft issued a security advisory, as expected, and it mentions that
they fixed it in SQL2005 SP3 so it could be in SP2 CU10 or CU11 as well.
See http://www.microsoft.com/technet/security/advisory/961040.mspx
Chris
"jaylou" <jaylou@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:22631D45-6680-411A-B5B0-56BC709DB083@xxxxxxxxxxxxxxxx
Thank you again!!
"Chris Wood" wrote:
Joe,
MS just released SQL2005 SP2 CU11 and SP3 so don't be surprised that
the fix
is announced in these builds when the January patches are announced.
The
original advisory shows that MS were told about this a few months ago
so I
would expect them to have looked at SQL2000/SQL2005 and SQL2008 at that
time. They would have seen that if it was in SQL2000 that it was also
be in
SQL2005 and check out SQL2008 as well.
Chris
"jaylou" <jaylou@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:88F03073-A253-4516-BFF4-E63864364E34@xxxxxxxxxxxxxxxx
OK thank,
I just subscribed to the feed.
Thanks again for the info.
"Chris Wood" wrote:
Joe,
if they are serious about this I would expect a Security Advisory to
appear
here http://www.microsoft.com/technet/security/advisory/default.mspx
as
the
problem has been publically announced.
Chris
"jaylou" <jaylou@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:F45651D0-4A16-4089-A060-CCEA823F1E20@xxxxxxxxxxxxxxxx
Yes I did. Do you know anything about this? I haven't been able
to
find
much more then more articles pointing back to this alert.
"Chris Wood" wrote:
Joe,
You saw this alert
http://www.sec-consult.com/files/20081209_mssql-2000-sp_replwritetovarbin_memwrite.txt
right?
Chris
"jaylou" <jaylou@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:AF1766C1-5F1D-4D8B-A967-F39BBB3D3B2B@xxxxxxxxxxxxxxxx
I recieved an email about this procedure sp_replwritetovarbin.
one
recomendation is to remove it from your system.
Does anyone know what this proc is for and what will break if
removed?
Also does anyone know if this is a real threat?
TIA,
Joe
.
- Prev by Date: Finding who has access to db_ltddtsuser
- Next by Date: Re: Finding who has access to db_ltddtsuser
- Previous by thread: Finding who has access to db_ltddtsuser
- Next by thread: RE: What is difference between ADO and RDO
- Index(es):
Relevant Pages
|
