JET engine flaws can crash Microsoft's IIS, SQL Server, say Palo Alto researchers
Claim SQL queries can gain status of native code execution thanks to unexpected remote DB access
Black Hat Asia A trio of researchers at Palo Alto Networks has detailed vulnerabilities in the JET database engine present on millions of Windows machines, and demonstrated how those flaws can be exploited to execute malicious code on systems running Microsoft’s SQL Server and Internet Information Services web server.…
from The Register
No comments