Feeds

MS goes security patch crazy

SQL high, Exchange low sure to keep BOFHs on the go

  • alert
  • submit to reddit

High performance access to file storage

A plethora of patches from Microsoft wings its way into our in-box this morning.

There are bug fixes for Microsoft Metadirectory Services, SQL Server, Exchange 5.5 and a reissued patch for Media Player. To round things up there's also a Cumulative Patch for SQL Server 2000.

First up, and most serious, two buffer overflow vulnerabilities in SQL Server 2000 Resolution Service have been discovered which could allow attackers to inject malicious code. Resolution Service is also prone to a system-exhausting denial of service attack.

Microsoft has released a patch designed to address these three flaws, which it describes as critical. Credit for uncovering the bugs goes to David Litchfield of Next Generation Security Software.

Our old friend buffer overflow bugs also make a further appearance in Microsoft Exchange 5.5.

Internet Mail Connector (IMC) enables Microsoft Exchange Server to communicate with other mail servers via SMTP. It contains an unchecked buffer in the part of its code which deals with handshakes when connecting to SMTP server.

Microsoft recommends that users review its fix, which it describes as moderately important.

SQL Server 2000, Service Pack 2, has also become entangled in a buffer overflow bug. In this case, a buffer overrun flaw has been discovered in several Database Consistency Checkers (DBCCs) that ship as part of SQL Server 2000. There's a SQL injection vulnerability that occurs in two stored procedures used in database replication.

You can review the fix for these flaws, which are defined by Microsoft as moderately severe, here.

Next up there's an Authentication Flaw in Microsoft Metadirectory Services (MMS).

Specifically, it is possible for an unprivileged user to connect to the MMS data repository via an LDAP client in such a way as to bypass certain security checks.

This could enable an attacker to modify data within the MMS data repository, either for the purpose of changing the MMS configuration or replicating bogus data to the other data repositories.

Pulling this off would require a fair deal of knowledge, so its hardly s'kiddie stuff and attacks over the Internet should be blocked at a firewall. You can read more about this medium risk flaw here.

With all these fixes flying around it's only human for Microsoft to let one slip. For this reason, Microsoft has reissued a cumulative update for Media Player which, it admits, failed to include a fix for a flaw that dates back to last year. The patch it issued last month, to some controversy, contained a patch which combated three recently discovered critical vulnerabilities but didn't fix older bugs. ®

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
OpenSSL Heartbleed: Bloody nose for open-source bleeding hearts
Bloke behind the cockup says not enough people are helping crucial crypto project
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Experian subsidiary faces MEGA-PROBE for 'selling consumer data to fraudster'
US attorneys general roll up sleeves, snap on gloves
Bad PUPPY: Undead Windows XP deposits fresh scamware on lawn
Installing random interwebs shiz will bork your zombie box
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.