3 matches found
SAP MaxDB Multiple Vulnerabilities
The remote host is running MaxDB, a database server from SAP. According to its version, the remote server is affected by a multiple flaws : - A vulnerability in 'vserver' process could allow an unauthenticated attacker to execute arbitrary code, subject to the privileges of the user under which t...
CVE-2008-0307
CVE-2008-0307 corresponds to an integer signedness error in SAP MaxDB’s vserver component that can let remote attackers execute arbitrary code by triggering heap corruption. Affected version cited: MaxDB 7.6.0.37 (and possibly others). Exploitation is described as requiring a TCP connection to th...
iDefense Security Advisory 03.10.08: SAP MaxDB Signedness Error Heap Corruption Vulnerability
iDefense Security Advisory 03.10.08 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 10, 2008 I. BACKGROUND SAP's MaxDB is a database software product. MaxDB was released as open source from version 7.5 up to version 7.6.00. Later versions are no longer open source but are available for...