Intrusion Prevention

MS.SQL.Server.Resolution.Service.Heap.Overflow

Description

It indicates a heap overflow vulnerability in Microsoft SQL Server Resolution Service.

There exists a flaw in some versions of Microsoft SQL Server that allows a remote attacker to cause Denial-of-Service or even execute arbitrary code on a target machine by passing it a specially-crafted packet.

Affected Products

Any unprotected MS SQL 2000 server is vulnerable to the attack.

Impact

Attackers can cause DoS against the SQL server or even execute arbitrary code on the victim system.

Recommended Actions

Patch the server from Microsoft.

Block external access to the MS SQL service on port 1433 and 1434

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

ID	11212
Created	Oct 10, 2005
Updated	Nov 15, 2021
Risk
CVE ID	CVE-2002-0649
Exploit Prediction Score	96.32%
Default Action	pass
Active
Affected OS	Windows
Affected App	MSSQL

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

MS.SQL.Server.Resolution.Service.Heap.Overflow

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

MS.SQL.Server.Resolution.Service.Heap.Overflow

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

References

Threat Intelligence
Center