Buffer Overflow Vulnerability in Microsoft SQL Server Extended Stored Procedures
CVE-2000-1083
Currently unrated
What is CVE-2000-1083?
A vulnerability exists in Microsoft SQL Server and Microsoft SQL Server Desktop Engine (MSDE) due to improper length restriction in the xp_showcolv function. This weakness allows an attacker to exploit the srv_paraminfo function utilized in the SQL Server API for Extended Stored Procedures, potentially leading to a denial of service or unauthorized command execution. It emphasizes the need for properly validating input parameters in order to safeguard database integrity.