FIX: SQL Server Text Formatting Functions Contain Unchecked Buffers

Article ID: 304850 - View products that this article applies to.
This article was previously published under Q304850
BUG #: 354983 (SHILOH_BUGS)
Expand all | Collapse all

SYMPTOMS

SQL Server 2000 provides a number of functions that enable database queries to generate text messages. In some cases, the functions create a text message and store it in a variable; in others, the functions directly display the message. Microsoft has discovered a vulnerability with these functions.

Use of an invalid format type character may allow SQL Server to overwrite an internal buffer that may overwrite an address in the SQL Server process space with arbitrary data. If SQL Server overwrites an address in the SQL Server process space with arbitrary data, SQL Server may potentially allow you to execute arbitrary code within SQL Server or the SQL Server process may abnormally terminate.
For additional information about this security fix, visit the following Microsoft Web site:

Microsoft Security Bulletin MS01-060
(http://www.microsoft.com/technet/security/bulletin/MS01-060.mspx)



To ensure that you are running the latest security updates for SQL Server 2000, see the following article in the Microsoft Knowledge Base:

316426
(http://support.microsoft.com/kb/316426/EN-US/ )
SQL Server 2000 Security Update for Service Pack 1
Back to the top | Give Feedback

CAUSE

The SQL Server parser incorrectly allows you to use an invalid type character with some text functions.
Back to the top | Give Feedback

RESOLUTION

To resolve this problem, obtain Microsoft SQL Server 2000 Service Pack 2.

For information on how to obtain SQL Server 2000 Service Pack 2 (SP2), see the following article in the Microsoft Knowledge Base:
290211
(http://support.microsoft.com/kb/290211/EN-US/ )
INF: How to Obtain the Latest SQL Server 2000 Service Pack
If you are not able to upgrade to Microsoft SQL Server 2000 Service Pack 2, you have to refer to the following Microsoft Knowledge Base article to obtain all of the security updates for SQL Server 2000 Service Pack 1:
316426
(http://support.microsoft.com/kb/316426/EN-US/ )
SQL Server 2000 Security Update for Service Pack 1
Back to the top | Give Feedback

STATUS

Microsoft has confirmed this to be a problem in SQL Server 2000.

This problem was first corrected in Microsoft SQL Server 2000 Service Pack 2.
Back to the top | Give Feedback

Properties

Article ID: 304850 - Last Review: December 23, 2008 - Revision: 6.0
APPLIES TO
  • Microsoft SQL Server 2000 Standard Edition
Keywords: 
kbdownload kbbug kbfix kbsecurity kbsqlserv2000presp2fix KB304850
Back to the top | Give Feedback

Give Feedback

 
Back to the topBack to the top