Lucene search
K

2866 matches found

securityvulns
securityvulns
added 2004/02/06 12:0 a.m.24 views

[Full-Disclosure] Oracle Database 9ir2 Interval Conversion Functions Buffer Overflow

Security Advisory Name: Oracle Database 9ir2 Interval Conversion Functions Buffer Overflow. System Affected : Oracle Database 9ir2, previous versions could be affected too. Severity : High Remote exploitable : Yes Author: Cesar Cerrudo. Date: 02/05/04 Advisory Number: CC020401 Legal Notice: This...

Exploits0
Positive Technologies
Positive Technologies
added 2003/10/08 12:0 a.m.5 views

PT-2003-1903 · Ibm · Ibm Db2 Universal Database

Name of the Vulnerable Software and Affected Versions: IBM DB2 Universal Data Base versions 7.2 before Fixpak 10 and 10a IBM DB2 Universal Data Base versions 8.1 before Fixpak 2 Description: A stack-based buffer overflow issue allows attackers with Connect privileges to execute arbitrary code via...

7.5CVSS7.7AI score0.02149EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2003/09/04 12:0 a.m.78 views

EZsite Forum Discloses Passwords to Remote Users

The remote host is running EZsite Forum. It is reported that this software stores usernames and passwords in plaintext form in the 'Database/EZsiteForum.mdb' file. A remote user can reportedly download this database. %NASLMINLEVEL 70300 This script written by deepquest Ref: Date: 4 sep , 2003...

5.5AI score
Exploits0
Cvelist
Cvelist
added 2003/08/02 4:0 a.m.29 views

CVE-2003-0634

Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name...

7.5AI score0.06883EPSS
Exploits0References8
exploitpack
exploitpack
added 2003/06/14 12:0 a.m.11 views

Progress Database 9.1 - Environment Variable Privilege Escalation

Progress Database 9.1 - Environment Variable Privilege Escalation // source: https://www.securityfocus.com/bid/7916/info It has been reported that Progress database does not properly handle untrusted input when opening shared libraries. Specifically, the dlopen function used by several Progress...

1AI score
Exploits0
securityvulns
securityvulns
added 2003/05/07 12:0 a.m.32 views

SAP database local root vulnerability during installation. (fwd)

This is an older moot vulnerability that I discovered which was never released, the vendor has fixed it. It is similar to what KF at snosoft discovered recently in the current version of SAPDB. Vapid Labs SAP database local root vulnerability during installation. December 10, 2002 I. BACKGROUND S...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/05/07 12:0 a.m.102 views

Ocean12 ASP Guestbook Manager Database Download

The remote server is running Ocean12 GuestBook, a set of scripts to manage an interactive guestbook. An attacker may download the database 'o12guest.mdb' and use it to extract the password of the admninistrator of these CGIs. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref: From:...

5.6AI score
Exploits0
Packet Storm
Packet Storm
added 2003/04/24 12:0 a.m.23 views

VapidSAP.txt

Vapid Labs SAP database local root vulnerability during installation. December 10, 2002 I. BACKGROUND SAP DB is a Free Enterprise database http://www.sapdb.org. An exploitable race condition exists during installation that can be won to yield root to a local malicous user. An executable is world...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2003/04/18 12:0 a.m.29 views

Web Wiz Forums all version db stealing

.:: Decription ::. Web Wiz Forums, the free award winning ASP bulletin board system is available in a boxed version with link removal code. .:: Vendor ::. http://www.webwizguide.info .:: Problem ::. By default all passwords are kept on admin/wwforum.mdb Example:...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2003/04/16 12:0 a.m.28 views

SRT2003-04-15-1029 - Progres BINPATHX overflow

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2003/04/14 12:0 a.m.13 views

Web Wiz Site News 3.6 - Information Disclosure

Web Wiz Site News 3.6 - Information Disclosure source: https://www.securityfocus.com/bid/7341/info Web Wiz Site News has been reported prone to sensitive information disclosure vulnerability. An attacker may make a request for and download the underlying Access database file that is used by the...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2003/04/12 12:0 a.m.57 views

SRT2003-04-01-1231 - Progress DLC overflows

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2003/04/11 12:0 a.m.12 views

Ocean12 ASP Guestbook Manager 1.0 - Information Disclosure

Ocean12 ASP Guestbook Manager 1.0 - Information Disclosure source: https://www.securityfocus.com/bid/7328/info Ocean12 Guestbook Manager has been reported prone to sensitive information disclosure vulnerability. An attacker may make a request for and download the underlying Access database file...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2003/02/17 12:0 a.m.27 views

Oracle unauthenticated remote system compromise (#NISR16022003a)

NGSSoftware Insight Security Research Advisory Name: Oracle unauthenticated remote system compromise Systems Affected: All platforms; Oracle9i Database Release 2, 9i Release 1, 8i, 8.1.7, 8.0.6 Severity: Critical Risk Category: Remote System Buffer Overrun Vendor URL: http://www.oracle.com Author...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2002/12/04 12:0 a.m.14 views

SAP DB 7.3.00 - Symbolic Link

SAP DB 7.3.00 - Symbolic Link source: https://www.securityfocus.com/bid/6316/info A vulnerability has been discovered in SAP DB that may allow an unprivileged to execute commands with root privileges. The vulnerability is due to insufficient sanity checks by lserver, when attempting to execute th...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/12/04 12:0 a.m.29 views

SAP DB 7.3.00 - Symbolic Link

source: https://www.securityfocus.com/bid/6316/info A vulnerability has been discovered in SAP DB that may allow an unprivileged to execute commands with root privileges. The vulnerability is due to insufficient sanity checks by lserver, when attempting to execute the 'lserversrv' binary in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/06/18 12:0 a.m.22 views

Interbase 6.0 - GDS_Drop Interbase Environment Variable Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/5044/info Interbase is a database distributed and maintained by Borland. It is available for Unix and Linux operating systems. A buffer overflow has been discovered in the gdsdrop program packaged with Interbase. This problem could allow a local user t...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/05/30 12:0 a.m.11 views

IBM Informix SE 7.25 sqlexec - Local Buffer Overflow (1)

IBM Informix SE 7.25 sqlexec - Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/4891/info Informix is an enterprise database distributed and maintained by IBM. A buffer overflow vulnerability has been reported for Informix-SE for Linux. The overflow is due to an unbounded stri...

Exploits0
exploitpack
exploitpack
added 2002/01/18 12:0 a.m.19 views

PHP-Nuke 4.x5.x - SQL_Debug Information Disclosure

PHP-Nuke 4.x5.x - SQLDebug Information Disclosure source: https://www.securityfocus.com/bid/3906/info PHPNuke is a website creation/maintenance tool. It is can be back-ended by a number of database products such as MySQL, PostgreSQL, mSQL, Interbase, Sybase, etc. The sqllayer.php script contains ...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2001/08/02 12:0 a.m.24 views

Oracle 89i - DBSNMP Oracle Home Environment Variable Buffer Overflow

Oracle 89i - DBSNMP Oracle Home Environment Variable Buffer Overflow // source: https://www.securityfocus.com/bid/3138/info Oracle is an Enterprise level SQL database, supporting numerous features and options. It is distributed and maintained by Oracle Corporation. When the ORACLEHOME environment...

0.8AI score
Exploits0
Rows per page
Query Builder