Maxdb Security Vulnerabilities and Issues — Maxdb CVE List

Lucene search

MysqlMaxdb

10 matches found

CVE•added 2006/08/30 1:4 a.m.•49 views

CVE-2006-4305

Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name when connecting via a WebDBM client.

10CVSS7.5AI score0.71142EPSS

CVE•added 2005/04/26 4:0 a.m.•46 views

CVE-2005-0684

Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled b...

10CVSS7.6AI score0.71813EPSS

CVE•added 2005/01/19 5:0 a.m.•45 views

CVE-2004-0931

MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTTP request to webdbm with high ASCII values in the Server field, which triggers an assert error in the IsAscii7 function.

5CVSS6.5AI score0.00804EPSS

CVE•added 2005/05/02 4:0 a.m.•41 views

CVE-2005-0083

MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote attackers to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_String::ReallocString, (2) DBMCli_String::operator, (3) DBMCli_Buffer::ForceResize, (4) DBMCli_Wizard:...

5CVSS6.8AI score0.00577EPSS

CVE•added 2005/04/14 4:0 a.m.•39 views

CVE-2005-0081

MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via an HTTP request with invalid headers.

5CVSS6.6AI score0.00655EPSS

CVE•added 2005/04/14 4:0 a.m.•39 views

CVE-2005-0082

The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent to crash.

5CVSS6.6AI score0.00577EPSS

CVE•added 2005/01/19 5:0 a.m.•39 views

CVE-2005-0111

Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote attackers to execute arbitrary code via a long password parameter.

7.5CVSS8.1AI score0.04963EPSS

CVE•added 2005/01/10 5:0 a.m.•35 views

CVE-2004-1169

MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns, which causes a NULL dereference.

5CVSS7.1AI score0.00577EPSS

CVE•added 2005/01/10 5:0 a.m.•32 views

CVE-2004-1168

Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbitrary code via a long Overwrite header.

10CVSS8.4AI score0.04593EPSS

CVE•added 2005/04/26 4:0 a.m.•32 views

CVE-2005-1274

Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via an HTTP unlock request and a long "If" parameter.

10CVSS8AI score0.02875EPSS