80 matches found
EUVD-2015-2376
Malware in sbrugna...
EUVD-2008-0317
Malware in sbrugna...
EUVD-2018-14273
Malware in sbrugna...
EUVD-2008-1810
Malware in sbrugna...
EUVD-2018-14305
Malware in sbrugna...
EUVD-2008-0316
Malware in sbrugna...
EUVD-2015-2380
Malware in sbrugna...
SAP MaxDB Cons.exe Remote Command Injection
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP MaxDB cons.exe Remote Command Injection', 'Description' = %q SAP MaxDB is prone to a remote command-injection vulnerability because the...
SUSE CVE-2015-2282
Stack-based buffer overflow in the LZC decompression implementation CsObjectInt::CsDecomprLZC function in vpa106cslzc.cpp in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and other products allows...
SQLMap v1.4.9 - Automatic SQL Injection And Database Takeover Tool
SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...
SQLMap v1.3.10 - Automatic SQL Injection And Database Takeover Tool
SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...
Automatic SQL injection and database takeover tool: sqlmap
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...
SQLMap v1.2.9 - Automatic SQL Injection And Database Takeover Tool
SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...
SAP MaxDB (liveCache SQL Injection Vulnerability)
SAP MaxDB liveCache is a German SAP SAP company's set of database management system. The system supports running on Windeows, Linux and Unix and other platforms. A SQL injection vulnerability exists in SAP MaxDB liveCache versions 7.8 and 7.9, which can be exploited by an attacker to execute...
CVE-2018-2450
SAP MaxDB liveCache, versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database...
Code injection
SAP MaxDB liveCache, versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database...
CVE-2018-2450
SAP MaxDB liveCache, versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database...
SAP MaxDB ODBC Remote Code Injection Vulnerability
SAP MaxDB is Germany SAP SAP company's set of cross-platform, ANSI SQL-92-compatible relational database management system. ODBC driver is one of the ODBC connection driver. A security vulnerability exists in the SAP MaxDB ODBC driver prior to version 7.9.09.07. An attacker can exploit this...
SAP MaxDB Data Link Properties Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP MaxDB. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of UDL fil...
Code injection
SAP MaxDB ODBC driver all versions before 7.9.09.07 allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...