Vulnerability Development mailing list archives
Re: Another Sql Server 7 Buffer Overflow (Update)
From: c c <cesarc56 () yahoo com>
Date: Thu, 7 Mar 2002 14:35:38 -0800 (PST)
Hoops... Sql Server 2000 all service packs is affected too. Try: exec xp_dirtree N'XXX...'--> 260 exactly X's The overflow will ocurr only if the parameter is passed as unicode and the string lenght must be exactly 260 in lenght. Especial Thanks to Aaron C. Newman (Application Security, Inc.) to point me that Sql 2000 is affected too and for his colaboration in tests. Cesar Cerrudo. Argentina. __________________________________________________ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/
Current thread:
- Re: Another Sql Server 7 Buffer Overflow (Update) c c (Mar 08)