CVE-2008-5416 PoC — Microsoft SQL Server sp_replwritetovarbin远程堆溢出漏洞

Source

https://github.com/SECFORCE/CVE-2008-5416

Associated Vulnerability

Title:Microsoft SQL Server sp_replwritetovarbin远程堆溢出漏洞 (CVE-2008-5416)
Description:Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine (MSDE 2000) SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine (WMSDE) on Windows Server 2003 SP1 and SP2; and Windows Internal Database (WYukon) SP2 allows remote authenticated users to cause a denial of service (access violation exception) or execute arbitrary code by calling the sp_replwritetovarbin extended stored procedure with a set of invalid parameters that trigger memory overwrite, aka "SQL Server sp_replwritetovarbin Limited Memory Overwrite Vulnerability."

Description

Microsoft SQL Server sp_replwritetovarbin Memory Corruption via SQL Injection

Readme

# CVE-2008-5416

Microsoft SQL Server sp_replwritetovarbin Memory Corruption via SQL Injection

A heap-based buffer overflow can occur when calling the undocumented
"sp_replwritetovarbin" extended stored procedure. This vulnerability affects
all versions of Microsoft SQL Server 2000 and 2005, Windows Internal Database,
and Microsoft Desktop Engine (MSDE) without the updates supplied in MS09-004.
Microsoft patched this vulnerability in SP3 for 2005 without any public
mention.

Credits:

          'jduck',          # MS09-004 base exploit
          'Rodrigo Marcos'  # SQL Injection mods

File Snapshot


 [4.0K]  /data/pocs/7c5efe050e6e9bd9a158efa98c8007c1f18a0173
├── [ 20K]  exploit.rb
└── [ 592]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!