CVE-2008-0244

2008-01-12T02:46:00
ID CVE-2008-0244
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:58:00

Description

SAP MaxDB 7.6.03 build 007 and earlier allows remote attackers to execute arbitrary commands via "&&" and other shell metacharacters in exec_sdbinfo and other unspecified commands, which are executed when MaxDB invokes cons.exe.