Heap-Based Buffer Overflow Vulnerability in Microsoft SQL Server Products
CVE-2008-0107

Currently unrated

Key Information:

Vendor
Microsoft
Vendor
CVE Published:
8 July 2008

Summary

An integer underflow vulnerability exists in various versions of Microsoft SQL Server and its components, which allows remote authenticated users to exploit this flaw. By providing a specially crafted pathname for an on-disk file or stored backup file, users can trigger a heap-based buffer overflow. This vulnerability can potentially allow execution of arbitrary code, posing a significant risk to data integrity and system stability.

References

EPSS Score

57% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.