CVE-2016-7253 in SQL Serverinfo

Zusammenfassung

von MITRE

The agent in Microsoft SQL Server 2012 SP2, 2012 SP3, 2014 SP1, 2014 SP2, and 2016 does not properly check the atxcore.dll ACL, which allows remote authenticated users to gain privileges via unspecified vectors, aka "SQL Server Agent Elevation of Privilege Vulnerability."

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

09.09.2016

Veröffentlichung

10.11.2016

Moderieren

akzeptiert

Eintrag

VDB-93416

CPE

bereit

CWE

CWE-264 (bestätigt)

CVSS

8.8 (NVD)

EPSS

0.18223

KEV

nein

Aktivitäten

very low

Sektor

Hospital, Industry, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-7253
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-7253
CVE Details	https://www.cvedetails.com/cve/CVE-2016-7253/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!