About this tag
MS15-058 is a Microsoft security bulletin from July 2015 that addresses vulnerabilities in Microsoft SQL Server. The most severe of these vulnerabilities could allow remote code execution if an authenticated attacker runs a specially crafted query designed to execute a virtual function from a wrong address, leading to a function call to uninitialized memory. Exploitation requires permissions to create or modify a database. The update is rated Important and resolves multiple security issues in SQL Server. This tag covers discussions and information related to the MS15-058 security update, including its impact, affected systems, and mitigation steps for SQL Server administrators.
-
MS15-058 - Important: Vulnerabilities in SQL Server Could Allow Remote Code Execution...
Severity Rating: Important Revision Note: V1.0 (July 14, 2015): Bulletin published Summary: This security update resolves vulnerabilities in Microsoft SQL Server. The most severe vulnerabilities could allow remote code execution if an authenticated attacker runs a specially crafted query that is...- News
- Thread
- 2015 attacker authentication database execution risk function call memory management ms15-058 patch query execution remote code execution revision note security server security sql server technet technical bulletin update vulnerability
- Replies: 0
- Forum: Security Alerts