Vulnerabilities > Mysql > Maxdb > 7.5.00
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-08-30 | CVE-2006-4305 | Remote Buffer Overflow vulnerability in SAP-DB/MaxDB WebDBM Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name when connecting via a WebDBM client. | 10.0 |
2005-05-02 | CVE-2005-0083 | Unspecified vulnerability in Mysql Maxdb 7.5.00 MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote attackers to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_String::ReallocString, (2) DBMCli_String::operator, (3) DBMCli_Buffer::ForceResize, (4) DBMCli_Wizard::InstallDatabase, (5) DBMCli_Devspaces::Complete, (6) DBMWeb_TemplateWizard::askForWriteCountStep5, or (7) DBMWeb_DBMWeb::wizardDB functions, which triggers a null dereference. | 5.0 |
2005-04-26 | CVE-2005-1274 | Remote Security vulnerability in MaxDB Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via an HTTP unlock request and a long "If" parameter. | 10.0 |
2005-04-25 | CVE-2005-0684 | Remote Buffer Overflow vulnerability in MySQL MaxDB HTTP GET Request Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c. | 10.0 |
2005-04-14 | CVE-2005-0082 | Denial-Of-Service vulnerability in MaxDB The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent to crash. | 5.0 |
2005-04-14 | CVE-2005-0081 | Unspecified vulnerability in Mysql Maxdb MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via an HTTP request with invalid headers. | 5.0 |
2005-01-13 | CVE-2005-0111 | Remote Buffer Overflow vulnerability in Mysql Maxdb 7.5.00 Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote attackers to execute arbitrary code via a long password parameter. | 7.5 |