DB: MS-SQL Stored Procedure Privilege Upgrade
This signature detects attempts to exploit the Stored Procedure Privilege vulnerability in Microsoft SQL Server 2000 and 7.0. Attackers can construct a malicious query that calls one of three stored procedures in order to gain elevated privileges on the SQL Server.
Extended Description
Microsoft SQL Server 2000 uses various extended stored procedures to allow database designers to create their own external routines. Some of these extended stored procedures have weak permissions, which could allow a user with low permissions to perform actions on the database in the context of the SQL Server Service Account.
Affected Products
Microsoft sql_server
References
BugTraq: 5481
CVE: CVE-2002-0721
URL: http://www.nextgenss.com/advisories/mssql-esppu.txt http://www.kb.cert.org/vuls/id/939675
Short Name
DB:MS-SQL:STOR-PROC-PRIV-UPGRD
Severity
Major
Recommended
False
Recommended Action
None
Category
DB
Keywords
CVE-2002-0721 MS-SQL Privilege Procedure Stored Upgrade bid:5481
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/1433
False Positive
Occasionally
Vendors
Microsoft
CVSS Score
10.0