213 matches found
SAP MaxDB ODBC Remote Code Injection Vulnerability
SAP MaxDB is Germany SAP SAP company's set of cross-platform, ANSI SQL-92-compatible relational database management system. ODBC driver is one of the ODBC connection driver. A security vulnerability exists in the SAP MaxDB ODBC driver prior to version 7.9.09.07. An attacker can exploit this...
CVE-2017-9637
Schneider Electric Ampla MES 6.4 provides capability to interact with data from third party databases. When connectivity to those databases is configured to use a SQL user name and password, an attacker may be able to sniff details from the connection string. Schneider Electric recommends that...
How to Test XenMobile Server Database Connectivity
This article describes how to test XenMobile Server database connectivity...
Vulnerabilities of the Debian GNU/Linux operating system that allow a malicious individual to compromise the integrity of protected information
The Debian GNU/Linux operating system’s odbc-postgresql package has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to a breach of the integrity of protected information...
OSIsoft PI JDBC Driver and PI ODBC Driver Denial of Service Vulnerabilities
OSIsoft PI JDBC Driver and PI ODBC Driver are drivers for connecting to access databases from OSIsoft, USA. A de-security vulnerability exists in OSIsoft PI JDBC Driver and PI ODBC Driver SQL Data Access Server fails to properly process input, which could be exploited by remote attackers to submi...
PHP 'odbc_bindcols' Function Denial of Service Vulnerability
PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. A...
UBUNTU-CVE-2015-8879
The odbcbindcols function in ext/odbc/phpodbc.c in PHP before 5.6.12 mishandles driver behavior for SQLWVARCHAR columns, which allows remote attackers to cause a denial of service application crash in opportunistic circumstances by leveraging use of the odbcfetcharray function to access a certain...
Infernal-Twin - This Is Evil Twin Attack Automated (Wireless Hacking)
This tool is created to aid the penetration testers in assessing wireless security. Author is not responsible for misuse. Please read instructions thoroughly. Usage sudo python InfernalWireless.py How to install $ sudo apt-get install apache2 $ sudo apt-get install mysql-server...
MySQL AB ODBC Driver 3.51 Plain Text Password Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8245/info A vulnerability has been reported in the MySQL AB ODBC Open Data Base Connectivity driver implementation. The MySQL ODBC driver reportedly stores plain text credentials used to connect to the specified database ...
OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous...
OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous...
OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous...
OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous...
OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous...
OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous...
Interactive Graphical SCADA System ODBC Server Buffer Overflow Vulnerability
This host is installed with Interactive Graphical SCADA System and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbigssodbcserverbofvuln.nasl 7044 2017-09-01 11:50:59Z teissa $ Interactive Graphical SCADA System ODBC Server Buffer Overflow Vulnerability Authors: Soora...
CVE-2011-2959
Stack-based buffer overflow in the Open Database Connectivity ODBC service Odbcixv9se.exe in 7-Technologies Interactive Graphical SCADA System IGSS 9 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted packet to TCP port 22202...
CVE-2011-2959
The CVE-2011-2959 entry concerns a stack-based buffer overflow in the ODBC service (Odbcixv9se.exe) of 7-Technologies IGSS (Interactive Graphical SCADA System) versions 9 and earlier. A remote attacker can send a crafted packet to TCP port 22202 to trigger a denial of service and, as implied by m...
Memory corruption
Unspecified vulnerability in the Open Database Connectivity ODBC component in 7T Interactive Graphical SCADA System IGSS before 9.0.0.11143 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 20222, which triggers memory corruption related to an "invalid structure...
CVE-2011-2214
The CVE-2011-2214 issue affects 7-Technologies IGSS (Interactive Graphical SCADA System) versions 8 and 9. A remote attacker can send a crafted packet to TCP port 20222, triggering memory corruption in the ODBC server component and potentially leading to arbitrary code execution or DoS. The vulne...