Root cause analysis and PoC for a Microsoft SQL Server Stack Overflow Vulnerability by reversing svl.dll.
We would like to share one of our vulnerability analysis works in this blog post which covers a silently patched stack based memory corruption vulnerability (CVE-2019–1068) in svl.dll, which can be used for a Denial of Service attack and possible Remote Code Execution. This blog post is also shared on blogs of both Ataberk and Cem.
This issue affects the following versions of Microsoft SQL Server:
To enumerate the input surface of the application, a simple fuzzer was developed.
Then, we reported the issue via root cause to the vendor.
This issue has been fixed and addressed in version 6.1.6. More detailed information can be found on the following ticket link.
To enumerate the input surface of the binary, we used an in-house built script. …
Security Engineer @Trendyol Group