Free to overrun software for windows

Clip Art Gallery and Clip Gallery Live use a special file format ? the .CIL format ? for downloading these clips. Under certain circumstances, a very long field embedded in a clip art .CIL file could cause a buffer overrun in the Clip Art Gallery software. When the buffer overrun occurs, the software could crash or could cause the execution of arbitrary code on a users computer. The primary danger in this vulnerability is that the buffer overrun would occur when a user opens an attachment that includes a specially formed clip art file, or downloads a .CIL file from a malicious hackers Web page.

Nachi.A is a worm that exploits the Buffer Overrun in RPC Interface vulnerability to spread to as many computers as possible.
Nachi.A spreads by attacking remote computers and exploits the vulnerability mentioned above to download a copy of itself to the compromised computer. In order to do this, Nachi.A incorporates its own TFTP (Trivial File Transfer Protocol) server.
Nachi.A can uninstall the worm Blaster, by ending its process and deleting the file carrying the worm.
Moreover, Nachi.A can use another exploit known as WebDAV. More information about this vulnerability and the corresponding patch are available here.
Nachi.A Remover will enable you to get rid of the pesky virus in no time!

An attacker who successfully exploited this vulnerability could gain the same level of privileges over the system as the program that initiated the broadcast request. The actions an attacker could carry out would be dependent on the permissions under which the program using MDAC ran. If the program ran with limited privileges, an attacker would be limited accordingly; however, if the program ran under the local system context, the attacker would have the same level of permissions.

Since the original version of MDAC on your system may have changed from updates available on the Microsoft Web site, we recommend using the following tool to determine the version of MDAC you have on your system: Microsoft Knowledge Base article 301202 "HOW TO: Check for MDAC Version" discusses this tool and explains how to use it. Also, Microsoft Knowledge Base article 231943 discusses the release history of the different versions of MDAC.

Mitigating factors:

• For an attack to be successful an attacker would have to simulate a SQL server that is on the same IP subnet as the target system.
• When a client system on a network tries to see a list of computers that are running SQL Server and that reside on the network, it sends a broadcast request to all the devices that are on the network. A target system must initiate such a broadcast request to be vulnerable to an attack. An attacker would have no way of launching this first step but would have to wait for anyone to enumerate computers that are running SQL Server on the same subnet. Also, a system is not vulnerable by having these SQL management tools installed.
• Code executed on the client system would only run under the privileges of the client program that made the broadcast request.

An unchecked buffer exists in the handling of OLE DB provider names in ad hoc connections. A buffer overrun could occur as a result and could be used to either cause the SQL Server service to fail, or to cause code to run in the security context of the SQL Server. SQL Server can be configured to run in various security contexts, and by default runs as a domain user. The precise privileges the attacker could gain would depend on the specific security context that the service runs in.

An attacker could exploit this vulnerability in one of two ways. They could attempt to load and execute a database query that calls one of the affected functions. Conversely, if a web-site or other database front-end were configured to access and process arbitrary queries, it could be possible for an attacker to provide inputs that would cause the query to call one of the functions in question with the appropriate malformed parameters.