Lucene search
+L

468 matches found

Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.19 views

(0Day) SAP Sybase ESP esp_parse Connection.canDiscover Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.canDiscover function in espserverlib.dll. By sending specific argument...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.17 views

(0Day) SAP Sybase ESP esp_parse ConnectionType.getParamNames Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the ConnectionType.getParamNames function in espserverlib.dll. By sending specific...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.26 views

(0Day) SAP Sybase ESP esp_parse Connection.getFieldNames Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.getFieldNames function in espserverlib.dll. By sending specific...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.22 views

(0Day) SAP Sybase ESP esp_parse Connection.dispose Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.dispose function in espserverlib.dll. By sending specific arguments to...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.23 views

(0Day) SAP Sybase ESP esp_parse ConnectionType.getConnection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the ConnectionType.getConnection function in espserverlib.dll. By sending specific...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.24 views

(0Day) SAP Sybase ESP esp_parse ConnectionType.getXmlDescription Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the ConnectionType.getXmlDescription function in espparse.exe. By sending specific...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.21 views

(0Day) SAP Sybase ESP esp_parse Connection.destroy Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.destroy function in espserverlib.dll. By sending specific arguments to...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.21 views

(0Day) SAP Sybase ESP esp_parse Connection.setParams Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.setParams function in espserverlib.dll. By sending specific arguments ...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.27 views

(0Day) SAP Sybase ESP esp_parse Connection.getError Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.getError function in espserverlib.dll. By sending specific arguments t...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.20 views

(0Day) SAP Sybase ESP esp_parse Connection.getErrors Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.getErrors function in espserverlib.dll. By sending specific arguments ...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.25 views

(0Day) SAP Sybase ESP esp_parse Connection.reset Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.reset function in espserverlib.dll. By sending specific arguments to t...

7.5CVSS7.3AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2014/05/22 12:0 a.m.28 views

(0Day) SAP Sybase ESP esp_parse Connection.getTableNames Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Sybase ESP. User interaction is not required to exploit this vulnerability. The specific flaw exists within the Connection.getTableNames function in espserverlib.dll. By sending specific...

7.5CVSS7.3AI score
Exploits0References2
seebug.org
seebug.org
added 2014/04/21 12:0 a.m.70 views

SAP Sybase SQL Anywhere OpenSSL TLS心跳信息泄漏漏洞

CVE ID:CVE-2014-0160 SAP Sybase SQL Anywhere是一套全面的解决方案,它提供了数据管理、同步和数据交换技术,可快速在远程和移动环境中开发并配置数据库驱动的应用程序。 SAP Sybase SQL Anywhere所绑定的OpenSSL存在安全漏洞,OpenSSL处理TLS”心跳“扩展存在一个边界错误,允许攻击者利用漏洞获取64k大小的已链接客户端或服务器的内存内容。内存信息可包括私钥,用户名密码等。 0 SAP Sybase SQL Anywhere 12.x SAP Sybase SQL Anywhere 16.x SAP Sybase SQL...

5CVSS8.4AI score0.99999EPSS
Exploits90
Check Point Advisories
Check Point Advisories
added 2013/12/22 12:0 a.m.26 views

Sybase Multiple Products Directory Traversal (CVE-2011-2474)

A directory traversal vulnerability has been reported in multiple Sybase products...

6.5AI score0.63612EPSS
Exploits2
NVD
NVD
added 2013/11/23 6:55 p.m.16 views

CVE-2013-6863

SAP Sybase Adaptive Server Enterprise ASE 15.0.3 before 15.0.3 ESD4.3, 15.5 before 15.5 ESD5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to gain privileges via unspecified vectors...

9CVSS6.5AI score0.01948EPSS
Exploits0References4
NVD
NVD
added 2013/11/23 6:55 p.m.13 views

CVE-2013-6865

SAP Sybase Adaptive Server Enterprise ASE 15.0.3 before 15.0.3 ESD4.3, 15.5 before 15.5 ESD5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka CR732989...

9CVSS7.5AI score0.03147EPSS
Exploits0References4
NVD
NVD
added 2013/11/23 6:55 p.m.16 views

CVE-2013-6862

Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise ASE before 15.0.3 ESD4.3, 15.5 before 15.5 ESD5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote attackers to cause a denial of service via unspecified vectors...

7.8CVSS6.7AI score0.01333EPSS
Exploits0References2
NVD
NVD
added 2013/11/23 6:55 p.m.17 views

CVE-2013-6868

SAP Sybase Adaptive Server Enterprise ASE 15.0.3 before 15.0.3 ESD4.3, 15.5 before 15.5 ESD5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows local users to obtain sensitive information via unspecified vectors...

7.8CVSS5.8AI score0.01058EPSS
Exploits0References2
NVD
NVD
added 2013/11/23 6:55 p.m.13 views

CVE-2013-6864

Directory traversal vulnerability in SAP Sybase Adaptive Server Enterprise ASE 15.0.3 before 15.0.3 ESD4.3, 15.5 before 15.5 ESD5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to affect confidentiality, integrity, and availability via unspecified vectors...

6.1CVSS6.2AI score0.01452EPSS
Exploits0References4
NVD
NVD
added 2013/11/23 6:55 p.m.18 views

CVE-2013-6861

Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise ASE 15.0.3 before 15.0.3 ESD4.3, 15.5 before 15.5 ESD5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows local users to obtain sensitive information via unspecified vectors...

4.9CVSS5.8AI score0.00332EPSS
Exploits0References4
Rows per page
Query Builder