CVE-2000-1085
- EPSS 10.69%
- Published 09.01.2001 05:00:00
- Last modified 03.04.2025 01:03:51
The xp_peekqueue function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which a...
CVE-2000-1084
- EPSS 43.15%
- Published 09.01.2001 05:00:00
- Last modified 03.04.2025 01:03:51
The xp_updatecolvbm function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which all...
CVE-2000-1083
- EPSS 4.71%
- Published 09.01.2001 05:00:00
- Last modified 03.04.2025 01:03:51
The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows ...
CVE-2000-1082
- EPSS 43.15%
- Published 09.01.2001 05:00:00
- Last modified 03.04.2025 01:03:51
The xp_enumresultset function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which al...
CVE-2000-1081
- EPSS 6.84%
- Published 09.01.2001 05:00:00
- Last modified 03.04.2025 01:03:51
The xp_displayparamstmt function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which...
CVE-2000-0202
- EPSS 12.62%
- Published 08.03.2000 05:00:00
- Last modified 03.04.2025 01:03:51
Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote attackers to gain privileges via a malformed Select statement in an SQL query.