Database News

Top Articles

Hover to load posts
Features

Top Articles

Hover to load posts
Scripts

Top Articles

Hover to load posts
Mysql

Top Articles

Hover to load posts
MS SQL

Top Articles

Hover to load posts
Oracle

Top Articles

Hover to load posts
MS Access

Top Articles

Hover to load posts
DB2

Top Articles

Hover to load posts
PostgreSQL

Top Articles

Hover to load posts
SAP

Top Articles

Hover to load posts
PHP

Top Articles

Hover to load posts
Forums Forums

Security pros groan as zero-day hits Microsoft’s SQL Server

Written By

Dec 12, 2008

1 minute read

Yet another zero-day vulnerability has been identified in a popular Microsoft product, this time in its SQL Server database. The revelation comes as miscreants are stepping up attacks on a particularly nasty bug in the latest version of Internet Explorer.

The SQL Server bug could allow the remote execution of malicious code, according to researchers at Austria-based SEC Consult. The company said attackers exploiting the flaw would have to be authenticated users on the system, a requirement that a Microsoft spokesman also said minimizes the risk. But an SEC Consult advisory warned it’s still possible for outsiders to target the vulnerability remotely on websites that link search boxes, customer data bases or other web apps to SQL Server.

The article continues at

http://www.theregister.co.uk/2008/12/11/sql_server_vuln/

DatabaseJournal.com Staff

Recommended for you...

MySQL

Best Certifications for Database Administrators

Database administrators are responsible for the day to day management of database environments, including relational databases management systems, cloud databases, or those used for database-driven web applications. Database administration is a great career choice, with plenty of employment options and (typically) a great salary. The competition for DBA jobs can be fierce, however, and, as […]

Ronnie Payne

Oct 14, 2022

Writing code snippets starts with the code snippets manager window.

Database News

Become More Efficient at Writing TSQL by Creating Code Snippets

A TSQL code snippet is a set of code that performs a task that can easily be placed in your TSQL code using SQL Server Management Studio (SSMS). Snippets are a great way to jump start creating a fragment of TSQL code for common types tasks, like creating a table, a stored procedure, a trigger, […]

Gregory Larsen

Jun 30, 2021

Database News

Line Numbers in SQL Server Management Studio

Have ever tried to debug a chunk of TSQL code (like a stored procedure) and found yourself trying to figure out which TSQL statement is at a particular line number? By default, SQL Server Management Studio (SSMS) doesn’t display numbers. But that is only the default, you can change it. To allow your Query window […]

Gregory Larsen

Sep 4, 2018

Database News

Couchbase Raises $60 Million to Fuel NoSQL Database Efforts

It takes a lot of money to build a database company in an industry dominated by giants like Oracle, Microsoft and IBM. It’s a lesson that open-source NoSQL database startup Couchbase knows well as it continues to raise funding to build its business. Couchbase officially announced on June 26 that it has raised an E […]

Sean Michael Kerner

Jun 30, 2014

DatabaseJournal.com publishes relevant, up-to-date and pragmatic articles on the use of database hardware and management tools and serves as a forum for professional knowledge about proprietary, open source and cloud-based databases--foundational technology for all IT systems. We publish insightful articles about new products, best practices and trends; readers help each other out on various database questions and problems. Database management systems (DBMS) and database security processes are also key areas of focus at DatabaseJournal.com.

Security pros groan as zero-day hits Microsoft’s SQL Server

DatabaseJournal.com Staff

Company

Categories