Bugtraq mailing list archives

Re: Microsoft SQL Server Agent Jobs Vulnerabilities (#NISR15002002B)

From: "David Litchfield" <david () ngssoftware com>
Date: Mon, 26 Aug 2002 20:10:06 +0100

In-Reply-To: <015601c244d2$fa6f8a30$2500a8c0@HEPHAESTUS>

IMHO - This is more a human error driven feature than a high risk
vulnerability.

Whilst what David says is true - the assumption has been made that a login
has access to the "msdb" database by default - this assumption is
incorrect.

The only way this vulnerability can be exploited is if a DBA (mad of
course ;-)) has given access for a login account to the "msdb" database.



No. This is incorrect. By default the 'guest' user is enabled on the msdb
database. A login that has not been given specific access to the msdb
database can access it as 'guest'; and as 'guest' is a member of the public
role anyone can submit jobs.

Brent Glover
Database specialist



David Litchfield

Current thread:

Microsoft SQL Server Agent Jobs Vulnerabilities (#NISR15002002B) David Litchfield (Aug 16)
- <Possible follow-ups>
- Re: Microsoft SQL Server Agent Jobs Vulnerabilities (#NISR15002002B) Brent Glover (Aug 26)
  - Re: Microsoft SQL Server Agent Jobs Vulnerabilities (#NISR15002002B) David Litchfield (Aug 26)
  - Re: Microsoft SQL Server Agent Jobs Vulnerabilities (#NISR15002002B) Chip Andrews (Aug 27)