Tag: remote code execution

SQL Server insights from 25+ years in the field

Performance tips, security advisories, health check findings, and industry analysis. Practical, technically accurate, no fluff.

28 Mar 2025 · 6 min read

Critical Security Patch: Preventing Remote Code Execution Vulnerabilities

SQL injection can escalate to full remote code execution in SQL Server. Learn how attackers exploit unvalidated input and what you must do to stop them.

Read article →

11 Jul 2024 · 6 min read

Critical Security Patch: Preventing Remote Code Execution

Microsoft has issued emergency GDR security updates for SQL Server 2022, 2019 and 2017 to address a critical remote code execution vulnerability in the SQL Server connection driver.

Read article →

15 Feb 2023 · 6 min read

“SQL Server 2022’s First Update and Enhancements for Previous Versions”

Microsoft's February 2023 security patches addressed four remote code execution vulnerabilities across every supported SQL Server version, while SQL Server 2022 still awaited its first Cumulative Update.

Read article →

13 Jan 2021 · 6 min read

Critical Security Issue in Extended Events Fixed in Latest SQL Server Updates

Microsoft has confirmed a critical remote code execution vulnerability in SQL Server's Extended Events feature. Find out if your instance is exposed and how to fix it.

Read article →

15 May 2019 · 5 min read

SQL Server 2017 Analysis Services Security Update: Addressing Vulnerabilities to Ensure System Security

KB5001989 patches a critical remote code execution vulnerability in SQL Server 2017 Analysis Services. Learn why immediate patching is essential to protect your environment.

Read article →

SQL Server insights, monthly.

Performance tips, security advisories, and industry analysis. No fluff, no spam.