Lucene search
+L

178 matches found

CISA
CISA
added 2016/03/23 12:0 a.m.14 views

Cisco Releases Security Updates

Cisco has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities could allow a remote attacker to create a denial-of-service condition. US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply...

6.9AI score
Exploits0References6
exploitpack
exploitpack
added 2016/01/28 12:0 a.m.51 views

SAP HANA 1.00.095 - hdbindexserver Memory Corruption

SAP HANA 1.00.095 - hdbindexserver Memory Corruption ERPSCAN-15-024 SAP HANA hdbindexserver - Memory corruption Application: SAP HANA Versions Affected: SAP HANA 1.00.095 Vendor URL: http://SAP.com Bugs: Memory corruption, RCE Reported: 17.07.2015 Vendor response: 18.07.2015 Date of Public...

7.5CVSS1AI score0.06242EPSS
Exploits5
Exploit DB
Exploit DB
added 2016/01/28 12:0 a.m.57 views

SAP HANA 1.00.095 - hdbindexserver Memory Corruption

ERPSCAN-15-024 SAP HANA hdbindexserver - Memory corruption Application: SAP HANA Versions Affected: SAP HANA 1.00.095 Vendor URL: http://SAP.com Bugs: Memory corruption, RCE Reported: 17.07.2015 Vendor response: 18.07.2015 Date of Public Advisory: 13.10.2015 Reference: SAP Security Note 2197428...

7.5CVSS6.6AI score0.06242EPSS
Exploits5
BDU FSTEC
BDU FSTEC
added 2015/11/26 12:0 a.m.8 views

The vulnerability of the SAP HANA database management system allows a hacker to execute arbitrary code.

The vulnerability of the Extended Application Services component of the SAP HANA database management system exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code during the authentication process on the HTTP server...

7.5CVSS6AI score0.03715EPSS
Exploits0References5Affected Software1
seebug.org
seebug.org
added 2015/11/16 12:0 a.m.18 views

SAP HANA DB Extended Application Services任意代码执行漏洞

No description provided by source...

7.1AI score
Exploits0
CNVD
CNVD
added 2015/11/12 12:0 a.m.5 views

SAP HANA DB Extended Application Services Arbitrary Code Execution Vulnerability

SAP HANA DB is an in-memory, row- and column-based database from SAP. The database provides fast queries against multidimensional data, filtering out cluttered and useless data, and synchronizing the execution of multiple queries. A security vulnerability exists in Extended Application Services i...

7.5CVSS7.6AI score0.03715EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2015/11/10 5:59 p.m.3 views

CVE-2015-7993

The Extended Application Services aka XS or XS Engine in SAP HANA DB 1.00.73.00.389160 NewDB100REL allows remote attackers to execute arbitrary code via unspecified vectors related to "HTTP Login," aka SAP Security Note 2197397...

7.5CVSS6.2AI score0.03715EPSS
Exploits0References5
CNVD
CNVD
added 2015/01/26 12:0 a.m.7 views

SAP HANA Extended Application Services ABAP Code Injection Vulnerability

SAP HANA is a high-performance real-time data analytics platform from SAP. The platform provides data query functions, users can directly query and analyze a large amount of real-time business data. A security vulnerability exists in SAP HANA's Extended Application Services XS. A remote attacker...

10CVSS6.9AI score0.02173EPSS
Exploits0References1
NVD
NVD
added 2015/01/22 4:59 p.m.22 views

CVE-2015-1311

The Extended Application Services XS in SAP HANA allows remote attackers to inject arbitrary ABAP code via unspecified vectors, aka SAP Note 2098906. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

10CVSS6.8AI score0.02173EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2015/01/22 12:0 a.m.6 views

PT-2015-3090 · Sap · Sap Hana

Name of the Vulnerable Software and Affected Versions: SAP HANA affected versions not specified Description: The issue is related to incorrect code generation management in the SAP HANA database management system. It allows a remote attacker to inject arbitrary ABAP code. The Extended Application...

10CVSS6.7AI score0.02173EPSS
Exploits0References5
securityvulns
securityvulns
added 2014/08/04 12:0 a.m.184 views

[Onapsis Security Advisory 2014-022] SAP HANA IU5 SDK Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory2014-022: SAP HANA IU5 SDK Authentication Bypass This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand...

6.9AI score
Exploits0
Prion
Prion
added 2014/07/31 2:55 p.m.20 views

Design/Logic Flaw

SAP HANA Extend Application Services XS allows remote attackers to bypass access restrictions via a request to a private IU5 SDK application that was once public...

5CVSS7.2AI score0.02774EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2014/07/31 12:0 a.m.5 views

PT-2014-6312 · Sap · Sap Hana Extended Application Services

Name of the Vulnerable Software and Affected Versions: SAP HANA Extend Application Services XS affected versions not specified Description: The issue allows remote attackers to bypass access restrictions via a request to a private IU5 SDK application that was once public. There is no information...

5CVSS6.5AI score0.02774EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2014/07/31 12:0 a.m.6 views

PT-2014-6310 · Sap · Sap Hana Extended Application Services

Name of the Vulnerable Software and Affected Versions: SAP HANA Extend Application Services XS affected versions not specified Description: The issue concerns the lack of encryption for transmissions in applications that use form-based authentication with SSL, allowing remote attackers to interce...

2.9CVSS6.4AI score0.01516EPSS
Exploits0References9
Cisco
Cisco
added 2014/05/21 4:0 p.m.31 views

Cisco Wide Area Application Services Remote Code Execution Vulnerability

A vulnerability in Cisco Wide Area Application Services WAAS software versions 5.1.1 through 5.1.1d, when configured with the SharePoint acceleration feature, could allow an unauthenticated, remote attacker to exploit a buffer overflow and cause arbitrary code execution. The vulnerability is due ...

9.3CVSS7.8AI score0.02427EPSS
Exploits0References1
securityvulns
securityvulns
added 2013/08/12 12:0 a.m.72 views

Cisco Wide Area Application Services, CDS, VDS, CDM code execution

Code execution via HTTP POST request, privilege escalation...

10CVSS2.6AI score0.06002EPSS
Exploits0
Cvelist
Cvelist
added 2007/07/21 12:0 a.m.22 views

CVE-2007-3923

The Common Internet File System CIFS optimization in Cisco Wide Area Application Services WAAS 4.0.7 and 4.0.9, as used by Cisco WAE appliance and the NM-WAE-502 network module, when Edge Services are configured, allows remote attackers to cause a denial of service loss of service via a flood of...

6.6AI score0.01978EPSS
Exploits0References7
Cisco
Cisco
added 2007/07/18 4:0 p.m.40 views

Denial of Service Vulnerability in Cisco Wide Area Application Services (WAAS) Software

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...

7.8CVSS6.3AI score0.01978EPSS
Exploits0References1
Rows per page
Query Builder