Описание
Microsoft SQL Server 2008 SP3, 2008 R2 SP2, and 2012 SP1 does not properly control use of stack memory for processing of T-SQL batch commands, which allows remote authenticated users to cause a denial of service (daemon hang) via a crafted T-SQL statement, aka "Microsoft SQL Server Stack Overrun Vulnerability."
Microsoft SQL Server 2008 SP3, 2008 R2 SP2, and 2012 SP1 does not properly control use of stack memory for processing of T-SQL batch commands, which allows remote authenticated users to cause a denial of service (daemon hang) via a crafted T-SQL statement, aka "Microsoft SQL Server Stack Overrun Vulnerability."
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-4061
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-044
- http://blogs.technet.com/b/srd/archive/2014/08/12/assessing-risk-for-the-august-2014-security-updates.aspx
- http://secunia.com/advisories/60676
- http://www.securitytracker.com/id/1030716
EPSS
CVE ID
Связанные уязвимости
Microsoft SQL Server 2008 SP3, 2008 R2 SP2, and 2012 SP1 does not properly control use of stack memory for processing of T-SQL batch commands, which allows remote authenticated users to cause a denial of service (daemon hang) via a crafted T-SQL statement, aka "Microsoft SQL Server Stack Overrun Vulnerability."
Уязвимость программного обеспечения Microsoft SQL Server, позволяющая удаленному злоумышленнику нарушить доступность защищаемой информации
EPSS