Remote code execution in Microsoft ODBC and OLE DB drivers

1) Input validation error

EUVDB-ID: #VU77449

Risk: High

CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-29349

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a execute arbitrary code on the system.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can trick the victim to open a specially crafted file and execute arbitrary code on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Microsoft ODBC Driver for SQL Server on Windows: 17 for SQL Server - 18.2.1.1 2018.182.1.1

Microsoft ODBC Driver for SQL Server on macOS: 17 - 18.2.2

Microsoft ODBC Driver for SQL Server on Linux: 17 - 18.2.2

OLE DB Driver: 18.0.2 - 19.3.0

Microsoft SQL Server: 2019 15.0.2000.5 - 2022 RC1 16.0.950.9

CPE2.3

• cpe:2.3:a:microsoft:odbc_driver_windows:18.2.1.1:2018.182.1.1:*:*:*:*:*:*
• cpe:2.3:a:microsoft:odbc_driver_windows:17.10.3.1:2017.1710.3.1:*:*:*:*:*:*
• cpe:2.3:a:microsoft:odbc_driver_macos:18.2.2:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:odbc_driver_macos:17.10.4:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:odbc_driver_linux:18.2.2:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:odbc_driver_linux:17.10.4:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:ole_db_driver:19.3.0:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:ole_db_driver:18.6.5:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:microsoft_sql_server:2022 RC1:16.0.950.9:*:*:*:*:*:*
• cpe:2.3:a:microsoft:microsoft_sql_server:2019 RC1.1:15.0.1900.47:*:*:*:*:*:*

External links

http://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-29349

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.