SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#139150

Microsoft Data Access Components (MDAC) contains buffer overflow

Overview

Microsoft Data Access Components (MDAC) contains a buffer overflow vulnerability that could allow a remote attacker to execute arbitrary code or cause a denial of service.

I. Description

From Microsoft Security Bulletin MS04-003:

    Microsoft Data Access Components (MDAC) is a collection of components that provides the underlying functionality for a number of database operations, such as connecting to remote databases and returning data to a client.

MS04-003 notes that "...MDAC is a ubiquitous technology" that is installed as part of Windows 2000, Windows XP, and other Microsoft programs (e.g., Microsoft Access and Microsoft SQL Server).

An MDAC client sends a network broadcast to port 1434/udp to query for systems running Microsoft SQL Server. A buffer overflow vulnerability exists in an MDAC component that handles responses to such a query. The vulnerability could be triggered by a specially crafted response packet. An MDAC client is only vulnerable for some period of time after it issues a query.

II. Impact

A remote attacker could execute arbitrary code with the privileges of the process using MDAC. The attacker could also cause a denial of service.

III. Solution

Apply patch

Apply the appropriate patch referenced in Microsoft Security Bulletin MS04-003.

Block or Restrict Access

Block or restrict inbound access to port 1434/udp. Note that a firewall that performs stateful inspection may allow inbound responses after recording an outbound broadcast.

Systems Affected

VendorStatusDate NotifiedDate Updated
Microsoft CorporationVulnerable19-Jan-2004

References


http://www.microsoft.com/technet/security/bulletin/ms04-003.asp
http://support.microsoft.com/default.aspx?kbid=301202
http://support.microsoft.com/default.aspx?kbid=231943
http://support.microsoft.com/default.aspx?kbid=813878
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnmdac/html/technologyfeatures.asp
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnmdac/html/datechartoverview.asp
http://www.secunia.com/advisories/10616/
http://www.securityfocus.com/bid/9407

Credit

Information used in this document came from Microsoft Security Bulletin MS04-003.

This document was written by Art Manion.

Other Information

Date Public:2004-01-13
Date First Published:2004-01-19
Date Last Updated:2004-01-19
CERT Advisory: 
CVE-ID(s):CAN-2003-0903
NVD-ID(s):CAN-2003-0903
US-CERT Technical Alerts: 
Metric:10.60
Document Revision:27

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2004 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader