Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5416

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2008-5416
Last Modified 07 Mar 2011 12:00:00
Published 10 Dec 2008 09:00:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-5416

Summary

Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine (MSDE 2000) SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine (WMSDE) on Windows Server 2003 SP1 and SP2; and Windows Internal Database (WYukon) SP2 allows remote authenticated users to cause a denial of service (access violation exception) or execute arbitrary code by calling the sp_replwritetovarbin extended stored procedure with a set of invalid parameters that trigger memory overwrite, aka "SQL Server sp_replwritetovarbin Limited Memory Overwrite Vulnerability."

Vulnerable Systems

Application

  • Microsoft Sql Server 2000

  • Microsoft Sql Server 2005


References

CERT - TA09-041A

CERT-VN - VU#696644

XF - mssql-spreplwritetovarbin-bo(47182)

VUPEN - ADV-2008-3380

CONFIRM - http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2011-0003.html

BID - 32710

BUGTRAQ - 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX

BUGTRAQ - 20081210 Microsoft SQL Server 2005 sp_replwritetovarbin memory overwrite(update to SEC Consult SA-20081209)

BUGTRAQ - 20081209 SEC Consult SA-20081109-0 :: Microsoft SQL Server 2000 sp_replwritetovarbin limited memory overwrite vulnerability

MISC - http://www.sec-consult.com/files/20081209_mssql-2000-sp_replwritetovarbin_memwrite.txt

MILW0RM - 7501

MS - MS09-004

CONFIRM - http://www.microsoft.com/technet/security/advisory/961040.mspx

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-055.htm

SECTRACK - 1021490

SECTRACK - 1021363

SREASON - 4706

SECUNIA - 33034

OSVDB - 50917

FULLDISC - 20081210 Microsoft SQL Server 2005 sp_replwritetovarbin memory overwrite (update to SEC Consult SA-20081209)

Related Patches

MS09-004 Security Update for Windows Server 2003 (KB960082)

MS09-004 Security Update for Windows Server 2003 x64 Edition (KB960082)


Last Updated: 27 May 2016 10:48:48