漏洞 mssql (1433/tcp) The remote MS SQL server is vulnerable to the Hello overflow.
An attacker may use this flaw to execute commands against the remote host as LOCAL/SYSTEM, as well as read your database content.
*** This alert might be a false positive.
Solution : Install Microsoft Patch Q316333 at http://support.microsoft.com/default.aspx?scid=kb en-us Q316333&sd=tech or disable the Microsoft SQL Server service or use a firewall to protect the MS SQL port (1433).
Risk factor : High CVE_ID : CAN-2002-1123 BUGTRAQ_ID : 5411 NESSUS_ID : 11067 Other references : IAVA:2002-B-0007 请问各位师哥师姐:我该怎么样利用这样的漏洞区攻击或入侵?
|