Application Security Inc. - Database Security, Monitoring, Assessment, Auditing, Encryption, and Regulatory Compliance.
 
 
 
home client login partner login purchasing info contact us
search:
Solutions Products Partners Support News & Events About Us
add this

Team SHATTER Security Alert

xp_dirtree Buffer Overflow

March 6, 2002

To determine if you are vulnerable to this attack, download AppDetective from:

http://www.appsecinc.com/products/appdetective/mssql

Risk level: High

Summary:

The extended stored procedure xp_dirtree contains a buffer overflow.

When a large Unicode buffer is passed as the first parameter to the extended stored procedure xp_dirtree, a buffer overflow occurs. The following command causes the database to crash and results in an exploitable vulnerability.

xp_dirtree N'XXXXXX< and addition 5000 Xs>...'

Fix:

No patch is available yet. The current work around is to drop the extended stored procedure and delete the DLL from the operating system.

Credit:

This vulnerability was researched and discovered by Cesar Cerrudo (cesarc56@yahoo.com).

 
Contact Us | Privacy | Sitemap | Legal
sales@appsecinc.com | support@appsecinc.com 		Call us toll free at: 1-866-927-7732 | FAX: 1-212-947-8788
. Application Security, Inc. All Rights Reserved