发布日期：2023-10-11
更新日期：2023-10-12

受影响系统：

Microsoft Microsoft SQL Server 2014 Service Pack 3 for x64-based S
Microsoft Microsoft SQL Server 2014 Service Pack 3 for x64-based S
Microsoft Microsoft SQL Server 2014 Service Pack 3 for 32-bit Syst
Microsoft Microsoft SQL Server 2014 Service Pack 3 for 32-bit Syst
Microsoft Microsoft SQL Server 2016 for x64-based Systems Service
Microsoft Microsoft SQL Server 2016 for x64-based Systems Service
Microsoft Microsoft SQL Server 2017 for x64-based Systems (GDR)
Microsoft Microsoft SQL Server 2017 for x64-based Systems (CU 31)
Microsoft Microsoft SQL Server 2019 for x64-based Systems (GDR)
Microsoft Microsoft SQL Server 2019 for x64-based Systems (CU 22)
Microsoft Microsoft SQL Server 2022 for x64-based Systems (GDR)
Microsoft Microsoft SQL Server 2022 for x64-based Systems (CU 8)
Microsoft Microsoft ODBC Driver 18 for SQL Server on Windows
Microsoft Microsoft ODBC Driver 18 for SQL Server on MacOS
Microsoft Microsoft ODBC Driver 18 for SQL Server on Linux
Microsoft Microsoft ODBC Driver 17 for SQL Server on Windows
Microsoft Microsoft ODBC Driver 17 for SQL Server on MacOS
Microsoft Microsoft ODBC Driver 17 for SQL Server on Linux
Microsoft Microsoft OLE DB Driver 19 for SQL Server
Microsoft Microsoft OLE DB Driver 18 for SQL Server

描述：

---

CVE(CAN) ID: CVE-2023-36728

Microsoft SQL Server是一个全面的数据库平台，使用集成的商业智能(BI)工具提供了企业级的数据管理。
Microsoft SQL Server存在拒绝服务漏洞，攻击者可利用该漏洞导致目标系统停止响应。

<**>

建议：

---

厂商补丁：

Microsoft
---------
目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-36728

浏览次数：531
严重程度：0（网友投票）