CVE-2000-1085
Last modified
CVE-2000-1085 is a vulnerability of currently unknown severity. The xp_peekqueue function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.. EPSS estimates a 5.29% chance of exploitation in the next 30 days.
Description
The xp_peekqueue function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the "Extended Stored Procedure Parameter Parsing" vulnerability.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Data Engine | 1.0 |
| Microsoft | Data Engine | 2000 |
| Microsoft | Sql Server | 7.0 |
| Microsoft | Sql Server | 2000 |
References
- http://www.securityfocus.com/bid/2040Exploit, Patch, Vendor Advisory
- http://www.securityfocus.com/bid/2040Exploit, Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2000-1085?
How severe is CVE-2000-1085?
How do I fix CVE-2000-1085?
Are you affected by CVE-2000-1085?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST