Multiple vulnerabilities in Microsoft SQL Server

Описание

Multiple information disclosure vulnerabilities have been found in Microsoft SQL Server. Malicious user can exploit these vulnerabilities to obtain sensitive information. These vulnerabilities can be exploited remotelly via speculative execution side-channel attack to obtain sensetive information.

All Kaspersky Lab business and consumer products are compatible with the update. Our database update on 28th December enables the compatibility flag, recommended by Microsoft, to allow devices to apply the update from 3rd January.Further details of Kaspersky Lab compatibility with Microsoft security updates are on our Support page.Our recommendation remains that for optimum protection against vulnerabilities, software and operating system updates should be installed as soon as possible.More about the CPU vulnerabilities can be found on the Kaspersky Lab blog here and on the announcement website here.

Первичный источник обнаружения

• ADV180002
  

Связанные продукты

• Microsoft-SQL-Server

Список CVE

Список KB

• 4058561
• 4057118
• 4057122
• 4058562
• 4058560
• 4058559
• 4057113
• 4057114
• 4057120
• 4057117
• 4057115
• 4057121
• 4057116

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com