Vulnerabilities > SAP > SAP DB > 7.3.00
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-07-06 | CVE-2007-3614 | Buffer Overflow vulnerability in SAP DB Web Server WAHTTP.EXE Multiple stack-based buffer overflows in waHTTP.exe (aka the SAP DB Web Server) in SAP DB, possibly 7.3 through 7.5, allow remote attackers to execute arbitrary code via (1) a certain cookie value; (2) a certain additional parameter, related to sapdbwa_GetQueryString; and other unspecified vectors related to "numerous other fields." | 7.5 |
2004-04-15 | CVE-2003-1034 | The RPM installation of SAP DB 7.x creates the (1) dbmsrv or (2) lserver programs with world-writable permissions, which allows local users to gain privileges by modifying those programs. | 4.6 |
2004-04-15 | CVE-2003-1033 | Unspecified vulnerability in SAP DB 7.3.00/7.4 The (1) instdbmsrv and (2) instlserver programs in SAP DB Development Tools 7.x trust the user-provided INSTROOT environment variable as a path when assigning setuid permissions to the lserver program, which allows local users to gain root privileges via a modified INSTROOT that points to a malicious dbmsrv or lserver program. | 7.2 |
2004-04-15 | CVE-2002-1576 | Symbolic Link vulnerability in SAP DB 7.3.00 lserver in SAP DB 7.3 and earlier uses the current working directory to find and execute the lserversrv program, which allows local users to gain privileges with a malicious lserversrv that is called from a directory that has a symlink to the lserver program. | 7.2 |