CVE-2001-0542

Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is identified by CVE-2001-0879.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:sql_server:7.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*

History

No history.

Information

Published : 2001-12-20 05:00

Updated : 2024-02-04 16:31


NVD link : CVE-2001-0542

Mitre link : CVE-2001-0542

CVE.ORG link : CVE-2001-0542


JSON object : View

Products Affected

microsoft

  • sql_server