Openlink Virtuoso-Opensource Denial-of-Service Vulnerability in SQL Statement Processing

A denial-of-service vulnerability has been identified in Openlink Virtuoso-Opensource version 7.2.11. The issue arises in the 'dc_add_int' component, where attackers can cause a service disruption by sending crafted SQL statements. This vulnerability can be reproduced using the Virtuoso database management system by executing a specific SQL update query that manipulates data in a way that crashes the database server.

Impact

Exploitation of this vulnerability leads to a crash of the Virtuoso database server, causing a temporary denial-of-service condition where the server becomes unresponsive or unavailable.

Reproduction

The vulnerability can be reproduced by first creating a SQL file with the proof-of-concept SQL injection payload. After removing any existing Docker container named 'virtdb_test', a new container can be started with Openlink Virtuoso-Opensource 7.2.11. Once the server is running, the SQL file can be executed using the 'isql' command-line interface, which will trigger the denial-of-service condition by crashing the database server.

Remediation

Users can update to the latest version of Openlink Virtuoso-Opensource, where this issue has been fixed.