Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

lundi 8 octobre 2018

Microsoft SQL Server Management Studio 17.9/18.0 Preview 4 XML Content XML External Entity

A vulnerability, which was classified as critical, has been found in Microsoft SQL Server Management Studio 17.9/18.0 Preview 4. This issue affects an unknown function of the component XML Content Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability (XXE). Using CWE to declare the problem leads to CWE-611. Impacted is confidentiality, integrity, and availability.

The weakness was shared 10/09/2018 as confirmed security update guide (Website). The advisory is shared at portal.msrc.microsoft.com. The vendor cooperated in the coordination of the public release. The identification of this vulnerability is CVE-2018-8533. Neither technical details nor an exploit are publicly available. The price for an exploit might be around USD $5k-$25k at the moment (estimation calculated on 10/10/2018). The advisory points out:

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing malicious XML content containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity declaration.

Applying a patch is able to eliminate this problem. A possible mitigation has been published immediately after the disclosure of the vulnerability.

The issues 125127 are related to this entry.

CPE

CVSSv3

VulDB Meta Base Score: 5.5
VulDB Meta Temp Score: 5.3

VulDB Base Score: ≈5.5
VulDB Temp Score: ≈5.3
VulDB Vector: 🔒
VulDB Reliability: 🔍

CVSSv2

VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍

Exploiting

Class: Privilege escalation / XXE (CWE-611)
Local: Yes
Remote: No

Availability: No

Price Prediction: 🔍
Current Price Estimation: 🔒

Threat Intelligence

Threat: 🔍
Adversaries: 🔍
Geopolitics: 🔍
Economy: 🔍
Predictions: 🔍
Actions: 🔍

Countermeasures

Recommended: Patch
Status: Official fix
Reaction Time: 🔒
0-Day Time: 🔒
Exposure Time: 🔒

Timeline

10/09/2018 Advisory disclosed
10/09/2018 Countermeasure disclosed
10/10/2018 VulDB entry created
10/10/2018 VulDB last update

Sources

Advisory: portal.msrc.microsoft.com
Status: Confirmed
Coordinated: 🔒

CVE: CVE-2018-8533 (🔒)
See also: 🔒

Entry

Created: 10/10/2018
Complete: 🔍

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 245

x

Événements SSI