Heap-Based Buffer Overflow Vulnerability in Microsoft SQL Server Products
CVE-2008-0107
Currently unrated
Key Information:
- Vendor
- Microsoft
- Vendor
- CVE Published:
- 8 July 2008
Summary
An integer underflow vulnerability exists in various versions of Microsoft SQL Server and its components, which allows remote authenticated users to exploit this flaw. By providing a specially crafted pathname for an on-disk file or stored backup file, users can trigger a heap-based buffer overflow. This vulnerability can potentially allow execution of arbitrary code, posing a significant risk to data integrity and system stability.
References
EPSS Score
57% chance of being exploited in the next 30 days.
Timeline
Vulnerability published
Vulnerability Reserved