37 matches found
CVE-2008-7229
GreenSQL Firewall greensql-fw before 0.9.2 allows remote attackers to bypass SQL injection protection via a crafted string, possibly involving an encoded space character %20...
CVE-2008-6992
GreenSQL Firewall greensql-fw, possibly before 0.9.2 or 0.9.4, allows remote attackers to bypass the SQL injection protection mechanism via a WHERE clause containing an expression such as "x=y=z", which is successfully parsed by MySQL...
EUVD-2008-6951
Malware in sbrugna...
EUVD-2008-6386
Malware in sbrugna...
EUVD-2007-5040
Malware in sbrugna...
EUVD-2008-7187
Malware in sbrugna...
EUVD-2008-6387
Malware in sbrugna...
GreenSQL Firewall 0.9.x WHERE Clause Secuity Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/36209/info GreenSQL Firewall is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions. Successfully exploiting this issue may aid in SQL attacks on the...
Oracle 10g R2 Buffer Overflow
Exploit Title: New exploit to Oracle CVE-2007-4517 vulnerability Date: 11,2,2011 Author: David Maman and the GreenSQL Team Software Link: http://blog.greensql.com/2011/11/02/new-exploit-to-oracle-vulnerability/ Version: 0.1 Tested on: Oracle Database 10g Express Edition CVE : New exploit to...
Oracle - xdb.xdb_pitrig_pkg.PITRIG_DROPMETADATA procedure
Exploit Title: New exploit to Oracle CVE-2007-4517 vulnerability Date: 11,2,2011 Author: David Maman and the GreenSQL Team Software Link: http://blog.greensql.com/2011/11/02/new-exploit-to-oracle-vulnerability/ Version: 0.1 Tested on: Oracle Database 10g Express Edition CVE : New exploit to...
Oracle XDB.XDB_PITRIG_PKG.PITRIG_DROPMETADATA Procedure Exploit
Exploit for windows platform in category remote exploits Exploit Title: New exploit to Oracle CVE-2007-4517 vulnerability Date: 11,2,2011 Author: David Maman and the GreenSQL Team Software Link: http://blog.greensql.com/2011/11/02/new-exploit-to-oracle-vulnerability/ Version: 0.1 Tested on: Oracl...
Sql injection
GreenSQL Firewall greensql-fw before 0.9.2 allows remote attackers to bypass SQL injection protection via a crafted string, possibly involving an encoded space character %20...
CVE-2008-7229
GreenSQL Firewall greensql-fw before 0.9.2 allows remote attackers to bypass SQL injection protection via a crafted string, possibly involving an encoded space character %20...
CVE-2008-7229
CVE-2008-7229 affects GreenSQL Firewall (greensql-fw) prior to version 0.9.2. The vulnerability allows remote attackers to bypass the product’s SQL injection protection by sending a crafted string, potentially involving an encoded space character (%20). The underlying issue is an insufficient val...
CVE-2008-7229
GreenSQL Firewall greensql-fw before 0.9.2 allows remote attackers to bypass SQL injection protection via a crafted string, possibly involving an encoded space character %20...
GreenSQL防火墙WHERE从句绕过SQL检测漏洞
BUGTRAQ ID: 36209 CVECAN ID: CVE-2008-6992 GreenSQL是用于防范SQL注入攻击的开源数据库防火墙。 如果远程攻击者在对数据库所提交的SQL查询请求中WHERE从句包含有类似于x=y=z的表达式,就可以绕过GreenSQL防火墙所提供的SQL注入防护机制,对数据库执行SQL注入攻击。 GreenSQL 0.9.4 GreenSQL 0.9.2 厂商补丁: GreenSQL -------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.greensql.net/node/98...
GreenSQL Firewall 0.9.x - WHERE Clause Security Bypass
GreenSQL Firewall 0.9.x - WHERE Clause Security Bypass source: https://www.securityfocus.com/bid/36209/info GreenSQL Firewall is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions. Successfully exploiting this issue may aid in SQL...
GreenSQL Firewall 0.9.x - WHERE Clause Security Bypass
source: https://www.securityfocus.com/bid/36209/info GreenSQL Firewall is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions. Successfully exploiting this issue may aid in SQL attacks on the underlying application. The following...
CVE-2008-6992
GreenSQL Firewall greensql-fw, possibly before 0.9.2 or 0.9.4, allows remote attackers to bypass the SQL injection protection mechanism via a WHERE clause containing an expression such as "x=y=z", which is successfully parsed by MySQL...
Sql injection
GreenSQL Firewall greensql-fw, possibly before 0.9.2 or 0.9.4, allows remote attackers to bypass the SQL injection protection mechanism via a WHERE clause containing an expression such as "x=y=z", which is successfully parsed by MySQL...