DB: MS-SQL Server 7 xp_dirtree Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Microsoft SQL Server. SQL Server 7.00.1021 is vulnerable. Attackers can send a long Unicode string to the xp_dirtree extended procedure in the SQL Server to overflow the buffer and execute arbitrary code.
Extended Description
Successful exploitation of the vulnerability could allow execution of arbitrary code with the privileges of the SQL Server process and gain unauthorized access to a system.
References
Short Name
DB:MS-SQL:XP-DIRTREE1
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DB
Keywords
7 Buffer MS-SQL Overflow Server xp_dirtree
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3324
Port
TCP/1433
False Positive
Unknown