Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     

  Technical Updates @ TACKtech Corp.  

04.30.2003 - MS03-016: Cumulative Patch for BizTalk Server (815206)



View Microsoft-Exchange related news. The first vulnerability affects Microsoft BizTalk Server 2002 only. BizTalk Server 2002 provides the ability to exchange documents using the HTTP format. A buffer overrun exists in the component used to receive HTTP documents - the HTTP receiver - and could result in an attacker being able to execute code of their choice on the BizTalk Server.

The second vulnerability affects both Microsoft BizTalk Server 2000 and BizTalk Server 2002. BizTalk Server provides the ability for administrators to manage documents via a Document Tracking and Administration (DTA) web interface. A SQL injection vulnerability exists in some of the pages used by DTA that could allow an attacker to send a crafted URL query string to a legitimate DTA user. If that user were to then navigate to the URL sent by the attacker, he or she could execute a malicious embedded SQL statement in the query string.

- Download Microsoft BizTalk Server 2000 Patch
- Download Microsoft BizTalk Server 2002 Patch
- View Microsoft Security Bulletin MS03-016
- View Microsoft End User Security Bulletin
- View Microsoft Knowledge Base Article - 815206
- Visit Microsoft Corporation

NID: 693 / Submitted by: TACKtech Team
Categories: Email Applications, Internet Applications, Microsoft, Patches and Updates, Server Applications
Most recent Microsoft-Exchange related news.
MS09-003 - Critical: Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (959239)
MS08-039 - Important: Vulnerabilities in Outlook Web Access for Exchange Server Could Allow Elevation of Privilege (953747)
Microsoft Exchange Hosted Services Directory Synchronization Tool 8.1
Update Rollup 4 for Exchange Server 2007 (KB940006)
MS07-026: Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832)
View archive of Microsoft-Exchange related news.
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
.....