CVE-2007-4814

Microsoft Sql Server - Memory Corruption

Title source: rule

Description

Buffer overflow in the SQLServer ActiveX control in the Distributed Management Objects OLE DLL (sqldmo.dll) 2000.085.2004.00 in Microsoft SQL Server Enterprise Manager 8.05.2004 allows remote attackers to execute arbitrary code via a long second argument to the Start method.

Exploits (2)

exploitdb WORKING POC VERIFIED

by 96sysim · htmlremotewindows

https://www.exploit-db.com/exploits/4398

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by rgod · htmldoswindows

https://www.exploit-db.com/exploits/4379

View Code ZIP pw:eip

References (8)

[Exploit] http://www.securityfocus.com/bid/25594

[Various Sources] http://retrogod.altervista.org/microsoft_sqldmo.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/36509

[Third Party Advisory] http://securityreason.com/securityalert/3112

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4379

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4398

[Third Party Advisory, VDB Entry] http://www.osvdb.org/38399

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/478822/100/0/threaded

Scores

EPSS 0.5364

EPSS Percentile 98.0%

Details

CWE

CWE-119

Status published

Products (1)

microsoft/sql_server 2005 sp2

Published Sep 11, 2007

Tracked Since Feb 18, 2026