[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Cross site scripting vulnerability in SQL Master Data Services (MDS) in SQL Server

ID: oval:org.secpod.oval:def:20807Date: (C)2014-08-14   (M)2023-06-27
Class: VULNERABILITYFamily: windows




The host is installed with Microsoft SQL Server 2012 on x64 bit systems or 2014 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to spoof content or disclose sensitive information.

Platform:
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Server 2012
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Server 2012 R2
Microsoft Windows 8
Microsoft Windows 8.1
Product:
Microsoft SQL Server 2012
Microsoft SQL Server 2014
Reference:
CVE-2014-1820
CVE    1
CVE-2014-1820
CPE    3
cpe:/a:microsoft:sql_server:2012
cpe:/a:microsoft:sql_server:2012:sp1
cpe:/a:microsoft:sql_server:2014

© SecPod Technologies