Vulnerabilities > CVE-2018-8527 - XXE vulnerability in Microsoft SQL Server Management Studio 17.9/18.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XEL file containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability." This affects SQL Server Management Studio 17.9, SQL Server Management Studio 18.0. This CVE ID is unique from CVE-2018-8532, CVE-2018-8533.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
description | Microsoft SQL Server Management Studio 17.9 - '.xel' XML External Entity Injection. CVE-2018-8527. Webapps exploit for Windows platform |
file | exploits/windows/local/45585.txt |
id | EDB-ID:45585 |
last seen | 2018-10-11 |
modified | 2018-10-11 |
platform | windows |
port | |
published | 2018-10-11 |
reporter | Exploit-DB |
source | https://www.exploit-db.com/download/45585/ |
title | Microsoft SQL Server Management Studio 17.9 - '.xel' XML External Entity Injection |
type | local |
Nessus
NASL family | Windows |
NASL id | SMB_NT_MS18_OCT_SSMS.NASL |
description | The version of Microsoft SQL Server Management Studio installed on the remote Windows host is a version prior or equal to 17.9, 18.0 Preview 4. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 118094 |
published | 2018-10-12 |
reporter | This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/118094 |
title | Microsoft SQL Server Management Studio Multiple vulnerabilities (October 2018) |
code |
|
Packetstorm
data source | https://packetstormsecurity.com/files/download/149762/MICROSOFT-SQL-SERVER-MGMT-STUDIO-XEL-FILETYPE-XML-INJECTION-CVE-2018-8527.txt |
id | PACKETSTORM:149762 |
last seen | 2018-10-12 |
published | 2018-10-11 |
reporter | hyp3rlinx |
source | https://packetstormsecurity.com/files/149762/Microsoft-SQL-Server-Management-Studio-17.9-18.0-Preview-4-XML-Injection.html |
title | Microsoft SQL Server Management Studio 17.9 / 18.0 Preview 4 XML Injection |
References
- http://www.securityfocus.com/bid/105474
- http://www.securityfocus.com/bid/105474
- http://www.securitytracker.com/id/1041826
- http://www.securitytracker.com/id/1041826
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8527
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8527
- https://www.exploit-db.com/exploits/45585/
- https://www.exploit-db.com/exploits/45585/