CVE-2003-0353
CVSS7.5
发布时间 :2003-08-27 00:00:00
修订时间 :2016-10-17 22:32:58
NMCOS    

[原文]Buffer overflow in a component of SQL-DMO for Microsoft Data Access Components (MDAC) 2.5 through 2.7 allows remote attackers to execute arbitrary code via a long response to a broadcast request to UDP port 1434.


[CNNVD]Microsoft MDAC函数远程缓冲区溢出漏洞(MS03-033)(CNNVD-200308-143)

        
        Microsoft Data Access Components (MDAC)是一套用于Windows平台上提供数据库互连的组件。
        MDAC存在设计缺陷,远程攻击者可以利用这个漏洞构建恶意报文使使用MDAC库的应用程序触发缓冲区溢出,可能以用户权限在系统上执行任意指令。
        MDAC默认包含在Microsoft Windows XP、Windows 2000、Windows Millennium Edition和Windows Server 2003上,也可以独立在如下地址获得:
        http://msdn.microsoft.com/library/default.asp?url=/downloads/list/dataaccess.asp
        MDAC还包含在多个产品和技术中,如包含在Microsoft Windows NT? 4.0 Option Pack 和Microsoft SQL Server 2000中。
        MDAC提供多个数据库操作功能,如连接远程数据库和返回数据给客户端。当客户端系统使用MDAC组件尝试获得运行SQL服务的机器列表时 ,会发送广播报文到网络中,由于客户端对服务器返回的应答缺少充分的检查,如果恶意机器以超长报文应答这个广播包,就可以触发基于堆栈的溢出。
        任何使用SQL-DMO库的SQL Server工具都存在这个漏洞,攻击者不需要直接针对目标,相反可以通过如下方法利用漏洞:
        1、设置监听UPD 1434端口的服务,当接收到数据时应答目标,但这需要与目标在同一子网。
        2、持续发送恶意包到子网等待SQL工具查询。
        3、也可以以非特权用户登录SQL数据库,使SQL服务器发送查询请求到指定地址,下面的SQL描述会引起SQL服务查询名为SERVER主机的UDP包:
        SELECT * FROM openrowset( 'SQLOLEDB', 'server=SERVER\instance name;uid=sa;pwd=', '')
        

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:microsoft:data_access_components:2.5Microsoft data_access_components 2.5
cpe:/a:microsoft:data_access_components:1.5Microsoft MDAC 1.5
cpe:/a:microsoft:data_access_components:2.7Microsoft data_access_components 2.7
cpe:/a:microsoft:data_access_components:2.7:goldMicrosoft MDAC 2.7_rtm_refresh
cpe:/a:microsoft:data_access_components:2.6Microsoft data_access_components 2.6
cpe:/a:microsoft:data_access_components:2.1Microsoft MDAC 2.1
cpe:/a:microsoft:data_access_components:2.5:goldMicrosoft MDAC 2.5 rtm
cpe:/a:microsoft:data_access_components:2.0Microsoft MDAC 2.0
cpe:/a:microsoft:data_access_components:2.5:sp2Microsoft MDAC 2.5 sp2
cpe:/a:microsoft:data_access_components:2.5:sp1Microsoft MDAC 2.5 sp1
cpe:/a:microsoft:data_access_components:2.6:goldMicrosoft MDAC 2.6 rtm
cpe:/a:microsoft:data_access_components:2.6:sp2Microsoft MDAC 2.6 sp2
cpe:/a:microsoft:data_access_components:2.12.4202.3Microsoft MDAC 2.12.4202.3
cpe:/a:microsoft:data_access_components:2.6:sp1Microsoft MDAC 2.6 sp1
cpe:/a:microsoft:data_access_components:2.1.1.3711.11:gaMicrosoft MDAC 2.1.1.3711.11_ga

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:962Microsoft Data Access Components SQL-DMO Buffer Overflow (Test 2)
oval:org.mitre.oval:def:961Microsoft Data Access Components SQL-DMO Buffer Overflow (Test 1)
oval:org.mitre.oval:def:6954Buffer overflow vulnerability in MDAC Function
oval:org.mitre.oval:def:1039Microsoft Data Access Components SQL-DMO Buffer Overflow (Test 3)
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0353
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0353
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200308-143
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=106149556627778&w=2
(UNKNOWN)  BUGTRAQ  20030821 AppSecInc Security Alert: Buffer Overflow in UDP broadcasts for Microsoft SQL Server client utilities
http://marc.info/?l=ntbugtraq&m=106251069107953&w=2
(UNKNOWN)  NTBUGTRAQ  20030821 AppSecInc Security Alert: Buffer Overflow in UDP broadcasts for Microsoft SQL Server client utilities
http://www.microsoft.com/technet/security/bulletin/MS03-033.asp
(VENDOR_ADVISORY)  MS  MS03-033
http://www.securityfocus.com/bid/8455
(UNKNOWN)  BID  8455

- 漏洞信息

Microsoft MDAC函数远程缓冲区溢出漏洞(MS03-033)
高危 边界条件错误
2003-08-27 00:00:00 2009-07-21 00:00:00
远程  
        
        Microsoft Data Access Components (MDAC)是一套用于Windows平台上提供数据库互连的组件。
        MDAC存在设计缺陷,远程攻击者可以利用这个漏洞构建恶意报文使使用MDAC库的应用程序触发缓冲区溢出,可能以用户权限在系统上执行任意指令。
        MDAC默认包含在Microsoft Windows XP、Windows 2000、Windows Millennium Edition和Windows Server 2003上,也可以独立在如下地址获得:
        http://msdn.microsoft.com/library/default.asp?url=/downloads/list/dataaccess.asp
        MDAC还包含在多个产品和技术中,如包含在Microsoft Windows NT? 4.0 Option Pack 和Microsoft SQL Server 2000中。
        MDAC提供多个数据库操作功能,如连接远程数据库和返回数据给客户端。当客户端系统使用MDAC组件尝试获得运行SQL服务的机器列表时 ,会发送广播报文到网络中,由于客户端对服务器返回的应答缺少充分的检查,如果恶意机器以超长报文应答这个广播包,就可以触发基于堆栈的溢出。
        任何使用SQL-DMO库的SQL Server工具都存在这个漏洞,攻击者不需要直接针对目标,相反可以通过如下方法利用漏洞:
        1、设置监听UPD 1434端口的服务,当接收到数据时应答目标,但这需要与目标在同一子网。
        2、持续发送恶意包到子网等待SQL工具查询。
        3、也可以以非特权用户登录SQL数据库,使SQL服务器发送查询请求到指定地址,下面的SQL描述会引起SQL服务查询名为SERVER主机的UDP包:
        SELECT * FROM openrowset( 'SQLOLEDB', 'server=SERVER\instance name;uid=sa;pwd=', '')
        

- 公告与补丁

        厂商补丁:
        Microsoft
        ---------
        Microsoft已经为此发布了一个安全公告(MS03-033)以及相应补丁:
        MS03-033:Unchecked Buffer in MDAC Function Could Enable System Compromise (Q823718)
        链接:
        http://www.microsoft.com/technet/security/bulletin/MS03-033.asp

        补丁下载:
        
        http://microsoft.com/downloads/details.aspx?FamilyId=9107ABC6-8995-4A99-B6A0-478B3A847E9C&displaylang=en

- 漏洞信息

10129
Microsoft Data Access Components SQL-DMO Broadcast Request Overflow
Input Manipulation
Loss of Integrity

- 漏洞描述

Unknown or Incomplete

- 时间线

2003-08-20 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Microsoft Data Access Components ODBC Buffer Overflow Vulnerability
Boundary Condition Error 8455
Yes No
2003-08-20 12:00:00 2009-07-12 05:56:00
The discovery of this vulnerability has been credited to "Aaron C. Newman" <aaron@newman-family.com>

- 受影响的程序版本

Microsoft Data Access Components (MDAC) 2.7 RTM Refresh
Microsoft Data Access Components (MDAC) 2.7
+ Microsoft Visual Studio .NET Academic Edition 0
+ Microsoft Visual Studio .NET Academic Edition 0
+ Microsoft Visual Studio .NET Academic Edition 0
+ Microsoft Visual Studio .NET Enterprise Architect Edition
+ Microsoft Visual Studio .NET Enterprise Architect Edition
+ Microsoft Visual Studio .NET Enterprise Architect Edition
+ Microsoft Visual Studio .NET Enterprise Developer Edition
+ Microsoft Visual Studio .NET Enterprise Developer Edition
+ Microsoft Visual Studio .NET Enterprise Developer Edition
+ Microsoft Visual Studio .NET Professional Edition
+ Microsoft Visual Studio .NET Professional Edition
+ Microsoft Visual Studio .NET Professional Edition
+ Microsoft Visual Studio .NET Trial Edition 0
+ Microsoft Visual Studio .NET Trial Edition 0
+ Microsoft Visual Studio .NET Trial Edition 0
+ Microsoft Windows XP 0
+ Microsoft Windows XP 0
+ Microsoft Windows XP 64-bit Edition
+ Microsoft Windows XP 64-bit Edition
+ Microsoft Windows XP 64-bit Edition
+ Microsoft Windows XP Home
+ Microsoft Windows XP Home
+ Microsoft Windows XP Home
+ Microsoft Windows XP Professional
+ Microsoft Windows XP Professional
+ Microsoft Windows XP Professional
Microsoft Data Access Components (MDAC) 2.6 SP2 Refresh
Microsoft Data Access Components (MDAC) 2.6 SP2
Microsoft Data Access Components (MDAC) 2.6 SP1
Microsoft Data Access Components (MDAC) 2.6 RTM
Microsoft Data Access Components (MDAC) 2.6
+ Microsoft SQL Server 2000 SP2
+ Microsoft SQL Server 2000 SP2
+ Microsoft SQL Server 2000 SP2
+ Microsoft SQL Server 2000 SP1
+ Microsoft SQL Server 2000 SP1
+ Microsoft SQL Server 2000 SP1
+ Microsoft SQL Server 2000
+ Microsoft SQL Server 2000
+ Microsoft SQL Server 2000
+ Microsoft SQL Server 2000 Desktop Engine
+ Microsoft SQL Server 2000 Desktop Engine
+ Microsoft SQL Server 2000 Desktop Engine
Microsoft Data Access Components (MDAC) 2.5 SP3
Microsoft Data Access Components (MDAC) 2.5 SP2
Microsoft Data Access Components (MDAC) 2.5 SP1
Microsoft Data Access Components (MDAC) 2.5 RTM
Microsoft Data Access Components (MDAC) 2.5
+ Microsoft Office 2000 SP2
+ Microsoft Office 2000 SP2
+ Microsoft Office 2000 SP2
+ Microsoft Office 2000 SP1
+ Microsoft Office 2000 SP1
+ Microsoft Office 2000 SP1
+ Microsoft SQL Server 7.0 SP3 alpha
+ Microsoft SQL Server 7.0 SP3 alpha
+ Microsoft SQL Server 7.0 SP3 alpha
+ Microsoft SQL Server 7.0 SP3
+ Microsoft SQL Server 7.0 SP3
+ Microsoft SQL Server 7.0 SP3
+ Microsoft SQL Server 7.0 SP2 alpha
+ Microsoft SQL Server 7.0 SP2 alpha
+ Microsoft SQL Server 7.0 SP2 alpha
+ Microsoft SQL Server 7.0 SP2
+ Microsoft SQL Server 7.0 SP2
+ Microsoft SQL Server 7.0 SP2
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server Japanese Edition
+ Microsoft Windows 2000 Server Japanese Edition
+ Microsoft Windows 2000 Server Japanese Edition
+ Microsoft Windows 2000 Terminal Services SP2
+ Microsoft Windows 2000 Terminal Services SP2
+ Microsoft Windows 2000 Terminal Services SP2
+ Microsoft Windows 2000 Terminal Services SP1
+ Microsoft Windows 2000 Terminal Services SP1
+ Microsoft Windows 2000 Terminal Services SP1
+ Microsoft Windows 2000 Terminal Services
+ Microsoft Windows 2000 Terminal Services
+ Microsoft Windows 2000 Terminal Services
Microsoft Data Access Components (MDAC) 2.8
+ Microsoft Windows 2000 Advanced Server SP4
+ Microsoft Windows 2000 Advanced Server SP4
+ Microsoft Windows 2000 Advanced Server SP4
+ Microsoft Windows 2000 Advanced Server SP3
+ Microsoft Windows 2000 Advanced Server SP3
+ Microsoft Windows 2000 Advanced Server SP3
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Datacenter Server SP4
+ Microsoft Windows 2000 Datacenter Server SP4
+ Microsoft Windows 2000 Datacenter Server SP4
+ Microsoft Windows 2000 Datacenter Server SP3
+ Microsoft Windows 2000 Datacenter Server SP3
+ Microsoft Windows 2000 Datacenter Server SP3
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Professional SP4
+ Microsoft Windows 2000 Professional SP4
+ Microsoft Windows 2000 Professional SP4
+ Microsoft Windows 2000 Professional SP3
+ Microsoft Windows 2000 Professional SP3
+ Microsoft Windows 2000 Professional SP3
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Server SP4
+ Microsoft Windows 2000 Server SP4
+ Microsoft Windows 2000 Server SP4
+ Microsoft Windows 2000 Server SP3
+ Microsoft Windows 2000 Server SP3
+ Microsoft Windows 2000 Server SP3
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Web Edition
+ Microsoft Windows Server 2003 Web Edition
+ Microsoft Windows Server 2003 Web Edition

- 不受影响的程序版本

Microsoft Data Access Components (MDAC) 2.8
+ Microsoft Windows 2000 Advanced Server SP4
+ Microsoft Windows 2000 Advanced Server SP4
+ Microsoft Windows 2000 Advanced Server SP4
+ Microsoft Windows 2000 Advanced Server SP3
+ Microsoft Windows 2000 Advanced Server SP3
+ Microsoft Windows 2000 Advanced Server SP3
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP2
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Datacenter Server SP4
+ Microsoft Windows 2000 Datacenter Server SP4
+ Microsoft Windows 2000 Datacenter Server SP4
+ Microsoft Windows 2000 Datacenter Server SP3
+ Microsoft Windows 2000 Datacenter Server SP3
+ Microsoft Windows 2000 Datacenter Server SP3
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP2
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server SP1
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Datacenter Server
+ Microsoft Windows 2000 Professional SP4
+ Microsoft Windows 2000 Professional SP4
+ Microsoft Windows 2000 Professional SP4
+ Microsoft Windows 2000 Professional SP3
+ Microsoft Windows 2000 Professional SP3
+ Microsoft Windows 2000 Professional SP3
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP2
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Server SP4
+ Microsoft Windows 2000 Server SP4
+ Microsoft Windows 2000 Server SP4
+ Microsoft Windows 2000 Server SP3
+ Microsoft Windows 2000 Server SP3
+ Microsoft Windows 2000 Server SP3
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP2
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+ Microsoft Windows Server 2003 Datacenter Edition Itanium 0
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+ Microsoft Windows Server 2003 Enterprise Edition Itanium 0
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Web Edition
+ Microsoft Windows Server 2003 Web Edition
+ Microsoft Windows Server 2003 Web Edition

- 漏洞讨论

A buffer overflow vulnerability exists in Microsoft Data Access Components that may allow an attacker to run arbitrary code on a client machine. This vulnerability is exposed when a client or a SQL Server implementing the SQL-DMO library, sends a broadcast request for Microsoft SQL Servers on a network. In response an attacker could send malicious data to the querying system, causing a buffer overflow.

This vulnerability could allow an attacker to gain access to confidential data and compromise the system.

- 漏洞利用

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com &lt;mailto:vuldb@securityfocus.com&gt;.

- 解决方案

Microsoft has released a patch in order to address this issue.


Microsoft Data Access Components (MDAC) 2.5 SP2

Microsoft Data Access Components (MDAC) 2.6 RTM

Microsoft Data Access Components (MDAC) 2.6 SP2

Microsoft Data Access Components (MDAC) 2.6 SP1

Microsoft Data Access Components (MDAC) 2.5 RTM

Microsoft Data Access Components (MDAC) 2.5 SP1

Microsoft Data Access Components (MDAC) 2.7 RTM Refresh

Microsoft Data Access Components (MDAC) 2.5

Microsoft Data Access Components (MDAC) 2.6

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站