Product

About

Get a Demo

published date: December 31, 2004

CVE-2004-1560 : Denial of Service Vulnerability

Description

Microsoft SQL Server 7.0 allows remote attackers to cause a denial of service (mssqlserver service halt) via a long request to TCP port 1433, possibly triggering a buffer overflow.

Product(s):

Microsoft SQLServer 7.0
Microsoft SQL Server 7.0
Microsoft Microsoft SQLServer 7.0 (alpha)
Microsoft SQL Server 7.0 Service Pack 1
Microsoft SQL Server 7.0 Service Pack 1 Alpha
Microsoft SQL Server 7.0 Service Pack 2
Microsoft SQL Server 7.0 Service Pack 2 Alpha
Microsoft SQL Server 7.0 Service Pack 3
Microsoft SQLServer 7.0 Service Pack 3 (alpha)
Microsoft SQL Server 7.0 Service Pack 4

CVSS:5 [Critical]
EPSS:14.12%
Exploitability:10
In KEV:No

Question to Ask Vendors:

Can you confirm whether your systems are affected by CVE-2004-1560, and if so, what steps are you currently taking to mitigate this vulnerability?
What is your estimated timeline for fully resolving CVE-2004-1560 in your products or services, and how will you communicate updates on this issue to us as your customer?

Recommended Actions:

Check out the advisory links provided below.

References:

https://nvd.nist.gov/vuln/detail/CVE-2004-1560

READY TO GET RESULTS YOU CAN TRUST?

Get a Demo Contact Sales