Description
Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name when connecting via a WebDBM client.
Exploits
167652010-09-20remoteWindows
MaxDB WebDBM - 'Database' Remote Overflow (Metasploit)
By Metasploit
References
cve@mitre.org
http://secunia.com/advisories/21677cve@mitre.org
http://secunia.com/advisories/22518cve@mitre.org
http://securitytracker.com/id?1016766cve@mitre.org
http://www.debian.org/security/2006/dsa-1190cve@mitre.org
http://www.securityfocus.com/bid/19660cve@mitre.org
http://www.vupen.com/english/advisories/2006/3410af854a3a-2127-422b-91ae-364da2661108
http://dev.mysql.com/doc/maxdb/changes/changes_7.6.00.32.htmlaf854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/21677af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/22518af854a3a-2127-422b-91ae-364da2661108
http://securitytracker.com/id?1016766af854a3a-2127-422b-91ae-364da2661108
http://www.debian.org/security/2006/dsa-1190af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/444601/100/0/threadedaf854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/19660af854a3a-2127-422b-91ae-364da2661108
http://www.symantec.com/enterprise/research/SYMSA-2006-009.txtaf854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2006/3410af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/28636