FIX: SQL Server Text Formatting Functions Contain Unchecked Buffers

Article translations Article translations
Article ID: 304850 - View products that this article applies to.
This article was previously published under Q304850
BUG #: 354983 (SHILOH_BUGS)
Expand all | Collapse all

SYMPTOMS

SQL Server 2000 provides a number of functions that enable database queries to generate text messages. In some cases, the functions create a text message and store it in a variable; in others, the functions directly display the message. Microsoft has discovered a vulnerability with these functions.

Use of an invalid format type character may allow SQL Server to overwrite an internal buffer that may overwrite an address in the SQL Server process space with arbitrary data. If SQL Server overwrites an address in the SQL Server process space with arbitrary data, SQL Server may potentially allow you to execute arbitrary code within SQL Server or the SQL Server process may abnormally terminate.
For additional information about this security fix, visit the following Microsoft Web site:

Microsoft Security Bulletin MS01-060


To ensure that you are running the latest security updates for SQL Server 2000, see the following article in the Microsoft Knowledge Base:

316426 SQL Server 2000 Security Update for Service Pack 1

CAUSE

The SQL Server parser incorrectly allows you to use an invalid type character with some text functions.

RESOLUTION

To resolve this problem, obtain Microsoft SQL Server 2000 Service Pack 2.

For information on how to obtain SQL Server 2000 Service Pack 2 (SP2), see the following article in the Microsoft Knowledge Base:
290211 INF: How to Obtain the Latest SQL Server 2000 Service Pack
If you are not able to upgrade to Microsoft SQL Server 2000 Service Pack 2, you have to refer to the following Microsoft Knowledge Base article to obtain all of the security updates for SQL Server 2000 Service Pack 1:
316426 SQL Server 2000 Security Update for Service Pack 1

STATUS

Microsoft has confirmed this to be a problem in SQL Server 2000.

This problem was first corrected in Microsoft SQL Server 2000 Service Pack 2.

Properties

Article ID: 304850 - Last Review: December 23, 2008 - Revision: 6.0
APPLIES TO
  • Microsoft SQL Server 2000 Standard Edition
Keywords: 
kbdownload kbbug kbfix kbsecurity kbsqlserv2000presp2fix KB304850

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com