Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2023-36577

Опубликовано: 10 окт. 2023
Источник: msrc
CVSS3: 8.8
EPSS Низкий

Описание

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Меры по смягчению последствий

The following mitigating factors might be helpful in your situation:

Exploitation of this vulnerability requires an attacker to trick or convince the victim into connecting to their malicious server. If your environment only connects to known, trusted servers and there is no ability to reconfigure existing connections to point to another location (for example you use TLS encryption with certificate validation), the vulnerability cannot be exploited.

FAQ

According to the CVSS metric, the attack vector is network (AV:N) and the user interaction is required (UI:R). What is the target context of the remote code execution?

An authenticated victim who is connected to the network must be tricked or persuaded to connect to a malicious SQL database using their SQL client application. After the connection is made, the server can send specially crafted replies to the client that exploit the vulnerability and permit execution of arbitrary code within the context of the user's SQL client application.

Обновления

ПродуктСтатьяОбновление
Windows Server 2008 for 32-bit Systems Service Pack 2
50314165031411
Monthly RollupSecurity Only
Windows Server 2008 for x64-based Systems Service Pack 2
50314165031411
Monthly RollupSecurity Only
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
50314165031411
Monthly RollupSecurity Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
50314085031441
Monthly RollupSecurity Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1
50314085031441
Monthly RollupSecurity Only
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
50314165031411
Monthly RollupSecurity Only
Windows Server 2012
50314425031427
Monthly RollupSecurity Only
Windows Server 2012 (Server Core installation)
50314425031427
Monthly RollupSecurity Only
Windows Server 2012 R2
50314195031407
Monthly RollupSecurity Only
Windows Server 2012 R2 (Server Core installation)
50314195031407
Monthly RollupSecurity Only

Показывать по

Возможность эксплуатации

Publicly Disclosed

No

Exploited

No

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 41%
0.00191
Низкий

8.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2023-36577

CVSS3: 8.8
nvd
почти 2 года назад

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

github логотип

GHSA-5j29-6cpw-mcc3

CVSS3: 8.8
github
почти 2 года назад

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

fstec логотип

BDU:2023-06684

CVSS3: 8.8
fstec
почти 2 года назад

Уязвимость компонента WDAC OLE DB для SQL Server операционных систем Windows, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 41%
0.00191
Низкий

8.8 High

CVSS3