[25801] in bugtraq
RE: wp-02-0007: Microsoft SQLXML ISAPI Overflow and Cross Site Sc
daemon@ATHENA.MIT.EDU (Francis Favorini)
Fri Jun 14 23:00:48 2002
Message-ID: <E525222439A3D111B5F600609712CBED3FECB6@broca.biac.duke.edu>
From: Francis Favorini <francis.favorini@duke.edu>
To: bugtraq@securityfocus.com
Cc: "'matt@westpoint.ltd.uk'" <matt@westpoint.ltd.uk>
Date: Fri, 14 Jun 2002 16:18:08 -0400
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Hi,
Does anyone know what the .DLL in question is exactly? I see "C:\Program
Files\Common Files\System\Ole DB\sqlxmlx.dll" (version 2000.080.0382.00) on
some systems that never had SQL Server on them. This appears to have come
with MDAC 2.7. I can't tell from this advisory or Microsoft's if this .DLL
is vulnerable.
Even if it is, according to
<http://msdn.microsoft.com/library/default.asp?url=/library/en-us/xmlsql/ac_
xml1_59m4.asp>, "Before queries can be specified using HTTP, a virtual root
must be created using the IIS Virtual Directory Management for SQL Server
utility." It would seem that if this hasn't been done, there is no
vulnerability. Can anyone confirm?
Thanks,
Francis
