SQL Server is not amply protected, Microsoft confirms

On Monday, a security bulletin has been issued by Microsoft which confirms that its SQL Sever is not amply protected because of an outlying code implementation. However, the Software maker is offering patches for downloading on its website to fix these security related issues.

SQL Server 7.0 and 2000 are suffering from the vulnerability issue and they relate to the display of text messages after submitting quarries in the products of the two mentioned versions.   According to Microsoft, the first security related hole is of moderate, while the other one is of low nature.

The first flaw is quite serious and it occurs because of the problem in text producing functionality of the SQL Server and it can become the cause of vulnerability that is called buffer overflow and with it a hacker can affect code in the system. The damage because of such attacks is different and it hinges on the security configuration of the product with database. Things may become worse if the intruder gets database control as well as on Server too. Microsoft suggests in this bulletin that it is better to format hard disk again if such things happen and installing new software after reconfiguration of the OS can also be very handy.

The second security problem relates to functions for C runtime to format text series on different operating systems like Windows XP, 2000 or NT4.0. Because of this flaw, the database can become susceptible for denying-service kinds of intrudes. There are different files and executable are available in C runtime and they back those programs that are developed for the C programming language.

According to Microsoft’s recommendation, the patch can work well for the security holes found in different systems running at 7.0 and 2000 SQL Servers.

Related posts brought to you by Yet Another Related Posts Plugin.

Tags: internet, microsoft, server, sql, sql servers