Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
  Technical Updates @ TACKtech Corp.  

10.09.2012 - MS12-070 - Important : Vulnerability in SQL Server Could Allow Elevation of Privilege (2754849) - Version: 1.0

View Microsoft related news. Severity Rating: Important
Revision Note: V1.0 (October 9, 2012): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft SQL Server on systems running SQL Server Reporting Services (SSRS). The vulnerability is a cross-site-scripting (XSS) vulnerability that could allow elevation of privilege, enabling an attacker to execute arbitrary commands on the SSRS site in the context of the targeted user. An attacker could exploit this vulnerability by sending a specially crafted link to the user and convincing the user to click the link. An attacker could also host a website that contains a webpage designed to exploit the vulnerability. In addition, compromised websites and websites that accept or host user-provided content or advertisements could contain specially crafted content that could exploit this vulnerability.

- View Microsoft Security Bulletin MS12-070
- View Microsoft Knowledge Base Article - on: 1.
- Visit Microsoft Corporation

NID: 43463 / Submitted by: The Zilla of Zuron
Categories: Microsoft
Most recent Microsoft related news.
MS16-110 - Important: Security Update for Microsoft Windows (3178467) - Version: 1.1
MS16-121 - Critical: Security Update for Microsoft Office (3194063) - Version: 1.1
MS16-127 - Critical: Security Update for Adobe Flash Player (3194343) - Version: 1.0
MS16-123 - Important: Security Update for Windows Kernel-Mode Drivers (3192892) - Version: 1.1
MS16-101 - Important: Security Update for Windows Authentication Methods (3178465) - Version: 2.0
View archive of Microsoft related news.

Visit the TACKtech Shop
  Popular Tech News  
  Most Viewed News  
  Top Affiliates