Info

Disclosure

Jul 25, 2002

Discovery

Unknown

Dates

Exploit

Jul 25, 2002

Solution

Unknown

Description

Microsoft SQL Server and Desktop Engine contain a flaw that may allow a remote attacker to cause a denial of service. The issue is due to a flaw in the keep-alive function in the SQL Resolution Service. If a remote attacker sends a specially crafted packet with a spoofed source address, the server will fall into a recursive loop sending packets to itself. Such an attack would consume system resources as well as bandwidth resources.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Cisco Systems, Inc.	BBSM	5.0
		5.1
	CallManager	3.3.x
	Unity	3.x
		4.x

Microsoft Corporation	Desktop Engine (MSDE)	2000
Microsoft Corporation	SQL Server	2000

References

CVE ID: 2002-0650 (see also: NVD)
Microsoft Knowledge Base Article: 317748
CERT VU: 370308
Related OSVDB ID: 4577 4578
Bugtraq ID: 5312
ISS X-Force ID: 9662
CERT: CA-2002-22
Other Advisory URL: http://www.nextgenss.com/advisories/mssql-udp.txt
CIAC Advisory: m-102
Microsoft Security Bulletin: MS02-039
Keyword: UDP Port 1434

Credit

David Litchfield - davidngssoftware.com - NGSSoftware

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

BBSM

CallManager

Unity

Microsoft Corporation

Desktop Engine (MSDE)

SQL Server

References

Credit