HeidiSQL Portable Denial-of-Service Vulnerability via Buffer Overflow

A denial-of-service vulnerability has been identified in HeidiSQL Portable version 10.1.0.5464. This vulnerability allows local attackers to crash the application by entering an excessively long string in the password field. During the login process for Microsoft SQL Server, attackers can paste a buffer overflow payload into the password input, triggering the application to crash.

Impact

Exploitation of this vulnerability leads to a crash of the HeidiSQL application, causing a denial-of-service condition.

Reproduction

To reproduce this vulnerability, first run a Python script that generates a buffer overflow payload by writing a string of 2000 'A' characters to a text file. After executing the script, open the file and copy its contents to the clipboard. Then, launch HeidiSQL Portable 10.1.0.5464 and create a new connection. Select 'Microsoft SQL Server (TCP/IP)' as the network type and enable 'Prompt for credentials'. When the login window appears, paste the clipboard contents into the password field and click 'Login'. The application will crash, demonstrating the denial-of-service vulnerability.