NextGuard
UNKNOWNCVE-2018-25231

HeidiSQL 9.5.0.5196 Denial of Service via Preferences

Platform

windows

Component

heidisql

View on NVD

HeidiSQL 9.5.0.5196 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long file path in the logging preferences. Attackers can input a buffer-overflow payload through the SQL log file path field in Preferences > Logging to trigger an application crash.

How to fix

Actualice HeidiSQL a una versión posterior a la 9.5.0.5196. Esto evitará que un atacante local pueda causar una denegación de servicio al proporcionar una ruta de archivo excesivamente larga en las preferencias de registro.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free
CVE-2018-25231 — Vulnerability Details | NextGuard | NextGuard