Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

CVE-2008-0085 (sql_server, Data Engine, SQL Server Desktop Engine)
BugsAlert Home > CVE-2008-0085 (sql_server, Data Engine, SQL Server Desktop Engine)
 
 

Microsoft SQL Server 7.0 SP4, 2000 SP4, 2005 SP2, Microsoft Data Engine (MSDE) 1.0 SP4, SQL Server 2000 Desktop Engine (MSDE 2000) SP4, and 2005 Express Edition SP2 does not initialize memory pages when reallocating memory, which allows database operators to obtain sensitive information (database contents) via unknown vectors related to memory page reuse.




Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0085

Learn more about CVE-2008-0085 (sql_server, Data Engine, SQL Server Desktop Engine)
 
Tags: cve-2008-0085 sql server data engine sql server
 desktop engine

Related Items
      FrSIRT - Active Web Mail "TabOpenQuickTab1" SQL Injection Vulnerability

      Debian: New kdegraphics packages fix arbitrary code execution

      CVE-2008-0221 (Weblaunch)

      eXV2 Viso Module "kid" SQL Injection Vulnerability

      Bugtraq: Multiple remote vulnerabilities MoinMoin v1.80

      Bugtraq: Re: Re: Re: Apache Server HTML Injection and UTF-7 XSS Vulnerability

      FrSIRT - Microsoft Outlook and Mail Security Bypass Vulnerability (MS08-048)

 
© 2007-2009 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel