It's 2019 and SQL Server can be pwned by an SQL query, DHCP failover server failed by a packet, Edge, IE by webpages...

www.theregister.co.uk | 7/9/2019 | Staff
nallynally (Posted by) Level 4
Click For Photo: https://regmedia.co.uk/2017/03/24/shutterstock_tablet_beach.jpg

Patch Tuesday Summer is now firmly upon us, and depending on where you are, the weather could be just about anything from stupidly hot to unbearably wet and cold right now given the state of the climate.

Well, anyway, Microsoft, Adobe, and SAP have dropped the July editions of their monthly security updates, so there's at least one storm to weather. How's that for a silky smooth transition?

Microsoft - July - Fixes - Total - Vulnerabilities

For Microsoft, July brings fixes for a total of 78 CVE-listed vulnerabilities.

Among the more serious flaws addressed this month is CVE-2019-1068, a remote code execution vulnerability in SQL Server. An attacker could exploit the flaw by sending a specially-crafted query to execute code with the permissions of the Database Engine. The bug was publicly disclosed earlier, but so far no attacks have been spotted in the wild.

Exploitation - Eyes - Hacker - SQL - Query

Real-world exploitation is unlikely, in our eyes, because a hacker would have to somehow execute an arbitrary SQL query, and if that's the case, the installation is essentially pwned anyway.

"It doesn’t provide you keys to the kingdom, but it does have elevated privileges," noted Dustin Childs, of the Trend Micro Zero Day Initiative, though.

Update - SQL - Server - Linux - Linux

"The update also impacts SQL Server 2017 on Linux and Linux Docker Containers. Considering SQL Servers are generally part of an enterprise’s critical infrastructure, definitely test and deploy this patch to your SQL Servers quickly."

Docker was also the focus of CVE-2018-15664, a privilege escalation flaw that would let an attacker escape the container and acquire full read/write privileges on the host machine. The exploit can be triggered via the Docker command line. That vulnerability was also publicly disclosed prior to today, but was not targeted in the wild.

CVE-2019-0880 - CVE-2019-1132 - Pair - Elevation - Privilege

The same can not be said for CVE-2019-0880 and CVE-2019-1132, a pair of elevation of privilege vulnerabilities in Windows that require local access. Trend Micro says both flaws...
(Excerpt) Read more at: www.theregister.co.uk
Wake Up To Breaking News!
He is faithful!
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!