Download
| Alert*
oval:org.secpod.oval:def:57366
A remote code execution vulnerability exists in Microsoft SQL Server when it incorrectly handles processing of internal functions. An attacker who successfully exploited this vulnerability could execute code in the context of the SQL Server Database Engine service account. To exploit the vulnerabili ... oval:org.secpod.oval:def:41656 An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces permissions. An attacker could exploit the vulnerability if the attacker's credentials allow access to an affected SQL server database. An attacker who successfully exploited the vuln ... oval:org.secpod.oval:def:57365 Microsoft SQL Server 2014 SP2 is installed oval:org.secpod.oval:def:25405 The host is installed with Microsoft SQL Server 2008, 2008 R2, 2012 or 2014 and is prone to an elevation of privilege vulnerability. A flaw is present in the application, which improperly casts pointers to an incorrect class. Successful exploitation could allow attackers to gain elevated privileges ... oval:org.secpod.oval:def:25409 The host is installed with Microsoft SQL Server 2008, 2008 R2, 2012 or 2014 and is prone to a remote code execution vulnerability. A flaw is present in the application, which incorrectly handles internal function calls to uninitialized memory. Successful exploitation could allow attackers to take co ... oval:org.secpod.oval:def:25410 The host is installed with Microsoft SQL Server 2008, 2008 R2, 2012 or 2014 and is prone to a remote code execution vulnerability. A flaw is present in the application, which incorrectly handles internal function calls to uninitialized memory. Successful exploitation could allow attackers to take co ... oval:org.secpod.oval:def:20806 SQL Server 2014 is installed oval:org.secpod.oval:def:20809 The host is missing an important security update according to Microsoft security bulletin, MS14-044. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attack ... oval:org.secpod.oval:def:20807 The host is installed with Microsoft SQL Server 2012 on x64 bit systems or 2014 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to spoof content or disclose sensitive informa ... oval:org.secpod.oval:def:25411 The host is missing an Important security update according to Microsoft security bulletin, MS15-058. The update is required to fix a multiple vulnerabilities. The flaws are present in the application, which incorrectly handles internal function calls to uninitialized memory. Successful exploitation ... oval:org.secpod.oval:def:61267 The host is missing an important security update 4535288 oval:org.secpod.oval:def:61268 The host is missing an important security update 4532095 oval:org.secpod.oval:def:61263 A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests. An attacker who successfully exploited this vulnerability could execute code in the context of the Report Server service account. To exploit the vulnerability, an authen ... oval:org.secpod.oval:def:81547 The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle a specially crafted query. Successful exploitation could allow an authenticated attacker could execute a specially crafted query using $ partition ... oval:org.secpod.oval:def:81549 The host is missing an important security update for KB5014164 oval:org.secpod.oval:def:81550 The host is missing an important security update for KB5014165 oval:org.secpod.oval:def:93698 The host is missing an important security update for KB5029184 oval:org.secpod.oval:def:93699 The host is missing an important security update for KB5029185 oval:org.secpod.oval:def:93697 Microsoft SQL Server Denial of Service Vulnerability. An attacker could impact availability of the service resulting in Denial of Service (DoS). oval:org.secpod.oval:def:87530 The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:87531 The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:87529 The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:87648 The host is missing an critical security update for KB5021045 oval:org.secpod.oval:def:87528 The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:87649 The host is missing an critical security update for KB5021037 oval:org.secpod.oval:def:87532 The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:87533 The host is installed with SQL Server and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. |