2885 matches found
CentOS 4 : mysql (CESA-2007:0152)
Updated mysql packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation...
Moderate: Red Hat Security Advisory: mysql security update
Updated mysql packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation...
Buffer overflow
Buffer overflow in FrontBase Relational Database Server 4.2.7 and earlier allows remote authenticated users, with privileges for creating a stored procedure, to execute arbitrary code via a CREATE PROCEDURE request with a long procedure name...
CVE-2007-1511
Buffer overflow in FrontBase Relational Database Server 4.2.7 and earlier allows remote authenticated users, with privileges for creating a stored procedure, to execute arbitrary code via a CREATE PROCEDURE request with a long procedure name...
CVE-2007-1511
CVE-2007-1511 concerns FrontBase Relational Database Server ≤4.2.7, where a vulnerability in the CREATE PROCEDURE path allows a remote authenticated user with privileges to create stored procedures to trigger a buffer overflow and execute arbitrary code. The root cause is a long procedure name in...
[Argeniss] Practical 10 minutes security audit: Oracle Case (Paper)
Hi. Abstract: This paper will show a extremely simple technique to quickly audit a software product in order to infer how trustable and secure it is. I will show you step by step how to identify half dozen of local 0day vulnerabilities in few minutes just making a couple of clicks on very easy to...
CVE-2006-7141
Absolute path traversal vulnerability in Oracle Database Server, when utlfiledir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges exist, allows remote authenticated users to read and modify arbitrary files via full filepaths to utlfile functions such as 1 utlfile.putline...
CVE-2006-7141
Absolute path traversal vulnerability in Oracle Database Server, when utlfiledir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges exist, allows remote authenticated users to read and modify arbitrary files via full filepaths to utlfile functions such as 1 utlfile.putline...
PT-2007-1419 · Oracle · Oracle Database Server
Name of the Vulnerable Software and Affected Versions: Oracle Database Server affected versions not specified Description: The issue allows remote authenticated users to read and modify arbitrary files via full filepaths to utl file functions such as utl file.put line and utl file.get line when u...
IBM DB2 < 9 Fix Pack 2 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 running on the remote host allows unsafe access to several setuid-root binaries. A local attacker can exploit this to crash the affected database server or possibly even gain root-level access. In addition, the fenced userid may be able to...
Oracle Buffer Overflow in DBMS_DRS.GET_PROPERTY
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Oracle Database Buffer overflow vulnerabilities in procedure DBMSDRS.GETPROPERTY DB03 AppSecInc Team SHATTER Security Advisory http://www.appsecinc.com/resources/alerts/oracle Jan 18, 2007 Affected versions: Oracle Database Server versions 9iR2 and...
Borrow from the administrator login penetration-vulnerability warning-the black bar safety net
Software author: withered Ling roseN. C. P. H Information source: evil octal information security team The most important experience is that we have a thought:the administrator how to get in,we'll how to get in. This station of penetration is relatively slow,it took more than a week. The site ver...
WordPress < 2.0.6 HTML Parameter Injection
Binary data 3873.prm...
IBM DB2 < 8.1 Fix Pack 14 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 running on the remote host may crash when processing specially crafted SQLJRA packets because it attempts to dereference a NULL pointer in the sqledb2raasrecvrequest function. A remote attacker can send such packets without authentication to...
Oracle XML Component DBMS_XMLSCHEMA.GENERATESCHEMA buffer overflow
Added: 11/03/2006 CVE: CVE-2006-0272 BID: 16287 OSVDB: 22567 Background Oracle Database Server includes the DBMSXMLSCHEMA component, which contains procedures for managing XML schemas. Problem A buffer overflow vulnerability in the DBMSXMLSCHEMA.GENERATESCHEMA procedure allows database users to...
Oracle XML Component DBMS_XMLSCHEMA.GENERATESCHEMA buffer overflow
Added: 11/03/2006 CVE: CVE-2006-0272 BID: 16287 OSVDB: 22567 Background Oracle Database Server includes the DBMSXMLSCHEMA component, which contains procedures for managing XML schemas. Problem A buffer overflow vulnerability in the DBMSXMLSCHEMA.GENERATESCHEMA procedure allows database users to...
Progress Database Server 8.3b (prodb) Local Root Exploit
No description provided by source. / progress database server v8.3b local root compromise. for sco-unix and linux on linux redhat 6.2 and SCOSV scosysv 3.2 5.05 this is just one of it, advisory about the bug discovery grabbed from packetstorm, which was originally found by:...
Moodle < 1.6.2 Multiple Vulnerabilities
Binary data 3742.prm...
IBM DB2 database server DoS
Multiple DoS conditions in database server...
DSA-1169 mysql-dfsg-4.1 - several
Bulletin has no description...