Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
maxdb vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2005-0684
Multiple buffer overflows in the web tool for MySQL MaxDB prior to 7.5.00.26 allows remote malicious users to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functiona...
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.19
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.18
Mysql Maxdb 7.5.00.23
1 EDB exploit
5
CVSSv2
CVE-2005-0081
MySQL MaxDB 7.5.0.0, and other versions prior to 7.5.0.21, allows remote malicious users to cause a denial of service (crash) via an HTTP request with invalid headers.
Mysql Maxdb 7.5.00
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
Mysql Maxdb 7.5.00.19
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.15
5
CVSSv2
CVE-2005-0082
The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions prior to 7.5.0.21, allows remote malicious users to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent ...
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
Mysql Maxdb 7.5.00.19
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.14
10
CVSSv2
CVE-2004-1168
Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and previous versions allows remote malicious users to execute arbitrary code via a long Overwrite header.
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
5
CVSSv2
CVE-2004-1169
MaxDB WebTools 7.5.00.18 and previous versions allows remote malicious users to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns, which causes a NULL dereference.
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
5
CVSSv2
CVE-2004-0931
MySQL MaxDB prior to 7.5.00.18 allows remote malicious users to cause a denial of service (crash) via an HTTP request to webdbm with high ASCII values in the Server field, which triggers an assert error in the IsAscii7 function.
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
10
CVSSv2
CVE-2010-1185
Stack-based buffer overflow in serv.exe in SAP MaxDB 7.4.3.32, and 7.6.0.37 up to and including 7.6.06 allows remote malicious users to execute arbitrary code via an invalid length parameter in a handshake packet to TCP port 7210. NOTE: some of these details are obtained from thi...
Sap Maxdb 7.6.06
Sap Maxdb 7.6.0.37
Sap Maxdb 7.4.3.32
1 EDB exploit
10
CVSSv2
CVE-2005-1274
Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB prior to 7.5.00.26 allows remote malicious users to execute arbitrary code via an HTTP unlock request and a long "If" parameter.
Mysql Maxdb
Mysql Maxdb 7.5.00.25
6.5
CVSSv2
CVE-2018-2450
SAP MaxDB (liveCache), versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database.
Sap Maxdb 7.9
Sap Maxdb 7.8
10
CVSSv2
CVE-2008-0244
SAP MaxDB 7.6.03 build 007 and previous versions allows remote malicious users to execute arbitrary commands via "&&" and other shell metacharacters in exec_sdbinfo and other unspecified commands, which are executed when MaxDB invokes cons.exe.
Sap Maxdb
1 EDB exploit
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21987
buffer overflow
CVE-2024-28890
CVE-2024-27574
CVE-2024-27347
CVE-2024-31450
privilege
SSTI
CVE-2024-31666
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »