CVE-2018-8273

Description

A buffer overflow vulnerability exists in the Microsoft SQL Server that could allow remote code execution on an affected system, aka "Microsoft SQL Server Remote Code Execution Vulnerability." This affects Microsoft SQL Server.

Affected products

• Microsoft / Microsoft SQL Server2016 for x64-based Systems Service Pack 1 – 2016 for x64-based Systems Service Pack 1
• Microsoft / Microsoft SQL Server2016 for x64-based Systems Service Pack 1 (CU) – 2016 for x64-based Systems Service Pack 1 (CU)
• Microsoft / Microsoft SQL Server2016 for x64-based Systems Service Pack 2 – 2016 for x64-based Systems Service Pack 2
• Microsoft / Microsoft SQL Server2016 for x64-based Systems Service Pack 2 (CU) – 2016 for x64-based Systems Service Pack 2 (CU)
• Microsoft / Microsoft SQL Server2017 for x64-based Systems – 2017 for x64-based Systems
• Microsoft / Microsoft SQL Server2017 for x64-based Systems (CU) – 2017 for x64-based Systems (CU)

References

• MISChttp://www.securitytracker.com/id/1041467
• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8273
• MISChttp://www.securityfocus.com/bid/104967