New SQL Server 7.0/2000 Buffer Overrun Vulnerability Security Patch
April 22, 2002
An attacker could exploit the vulnerability in one of two ways: 1) The attacker could attempt to load and execute a database query that calls one of the affected functions, or 2) If a web-site or other database front-end were configured to access and process arbitrary queries, it could be possible for the attacker to provide inputs that would cause the query to call one of the functions in question with the appropriate malformed parameters.
The patch eliminates the vulnerability by implementing proper checking on the affected extended stored procedures. Microsoft has issued a moderate severity rating for the patch. The SQL Server 7.0 patch can be installed on systems running SQL Server 7.0 Service Pack 3, and the SQL Server 2000 patch can be installed on systems running SQL Server 2000 Service Pack 2.
Additional information on the SQL Server Security Patch (and download links) can be found at: