SQL Injection

Moodle is vulnerable to SQL injection attacks. The attacks exist because the application does not filter null bytes \0 characters in query strings, leading to SQL statements failing and causing error to the Microsoft SQL driver. This can allow a malicious user to inject and execute SQL queries...

UBUNTU-CVE-2012-2658

Buffer overflow in the SQLDriverConnect function in unixODBC 2.3.1 allows local users to cause a denial of service crash via a long string in the DRIVER option. NOTE: this issue might not be a vulnerability, since the ability to set this option typically implies that the attacker already has...

UBUNTU-CVE-2012-2657

Buffer overflow in the SQLDriverConnect function in unixODBC 2.0.10, 2.3.1, and earlier allows local users to cause a denial of service crash via a long string in the FILEDSN option. NOTE: this issue might not be a vulnerability, since the ability to set this option typically implies that the...

PT-2012-1208 · Unixodbc +1 · Unixodbc +1

Name of the Vulnerable Software and Affected Versions: unixODBC versions 2.0.10, 2.3.1, and earlier Description: The issue is related to a buffer overflow in the SQLDriverConnect function, which can be triggered by a long string in the FILEDSN option, potentially allowing local users to cause a...

Update Rollup 3 for System Center 2019 Orchestrator

Update Rollup 3 for System Center 2019 Orchestrator Introduction This article describes the issues that are fixed in Update Rollup 3 for Microsoft System Center 2019 Orchestrator. This article also contains the installation instructions for this update.Issues that are fixed Unable to set alternat...