Vulnerabilities > SAP > SAP DB > 7.4.3.7.beta
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-07-06 | CVE-2007-3614 | Buffer Overflow vulnerability in SAP DB Web Server WAHTTP.EXE Multiple stack-based buffer overflows in waHTTP.exe (aka the SAP DB Web Server) in SAP DB, possibly 7.3 through 7.5, allow remote attackers to execute arbitrary code via (1) a certain cookie value; (2) a certain additional parameter, related to sapdbwa_GetQueryString; and other unspecified vectors related to "numerous other fields." | 7.5 |
| 2003-05-27 | CVE-2003-0265 | Unspecified vulnerability in SAP DB 7.3.29/7.4.3.7Beta Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed. | 6.2 |