CVE-2020-0618
CVE-2020-0618
In short
Microsoft SQL Server Reporting Services has a critical vulnerability that allows attackers to execute malicious code remotely on affected systems. This happens because the service incorrectly processes certain page requests, giving attackers a way to take complete control of the server.
Technical detail
A remote code execution vulnerability in MSSQL Reporting Services stems from improper handling of page requests, enabling unauthenticated attackers to execute arbitrary code with the privileges of the Reporting Services process. The vulnerability is triggered via specially crafted HTTP requests and can lead to full system compromise.
Summary generated and translated by AI from the official description.
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability'.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Microsoft · Microsoft SQL ServerMicrosoft · Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (CU)Microsoft · Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems (GDR)Microsoft · Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (CU)Microsoft · Microsoft SQL Server 2014 Service Pack 3 for x64-based Systems (GDR)Microsoft · Microsoft SQL Server 2016 for x64-based Systems Service Pack 2 (GDR)public PoCs found — 7
githubgithub.com/euphrat1ca/CVE-2020-0618★ 195githubgithub.com/wortell/cve-2020-0618★ 30githubgithub.com/itstarsec/CVE-2020-0618★ 2githubgithub.com/N3xtGenH4cker/CVE-2020-0618_DETECTION★ 0cve_referencepacketstormsecurity.com/files/159216/Microsoft-SQL-Server-Reporting-Services-2016-Remote-Code-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/48816unverifiedcve_referencepacketstormsecurity.com/files/156707/SQL-Server-Reporting-Services-SSRS-ViewState-Deserialization.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/156707/SQL-Server-Reporting-Services-SSRS-ViewState-Deserialization.htmlhttp://packetstormsecurity.com/files/159216/Microsoft-SQL-Server-Reporting-Services-2016-Remote-Code-Execution.htmlhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0618https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0618