Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
maxdb vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2010-1185
Stack-based buffer overflow in serv.exe in SAP MaxDB 7.4.3.32, and 7.6.0.37 up to and including 7.6.06 allows remote malicious users to execute arbitrary code via an invalid length parameter in a handshake packet to TCP port 7210. NOTE: some of these details are obtained from thi...
Sap Maxdb 7.6.06
Sap Maxdb 7.6.0.37
Sap Maxdb 7.4.3.32
1 EDB exploit
10
CVSSv2
CVE-2008-0244
SAP MaxDB 7.6.03 build 007 and previous versions allows remote malicious users to execute arbitrary commands via "&&" and other shell metacharacters in exec_sdbinfo and other unspecified commands, which are executed when MaxDB invokes cons.exe.
Sap Maxdb
1 EDB exploit
1 Github repository
10
CVSSv2
CVE-2006-4305
Buffer overflow in SAP DB and MaxDB prior to 7.6.00.30 allows remote malicious users to execute arbitrary code via a long database name when connecting via a WebDBM client.
Mysql Maxdb
Sap-db Sap-db
1 EDB exploit
10
CVSSv2
CVE-2005-1274
Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB prior to 7.5.00.26 allows remote malicious users to execute arbitrary code via an HTTP unlock request and a long "If" parameter.
Mysql Maxdb
Mysql Maxdb 7.5.00.25
10
CVSSv2
CVE-2005-0684
Multiple buffer overflows in the web tool for MySQL MaxDB prior to 7.5.00.26 allows remote malicious users to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functiona...
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.19
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.18
Mysql Maxdb 7.5.00.23
1 EDB exploit
10
CVSSv2
CVE-2004-1168
Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and previous versions allows remote malicious users to execute arbitrary code via a long Overwrite header.
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
9.3
CVSSv2
CVE-2007-4475
Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d.dll) in SAP AG SAPgui prior to 7.10 Patch Level 9 allows remote malicious users to execute arbitrary code via a long argument to the SaveViewToSessionFile method.
Sap Sapgui 4.6a
Sap Sapgui 4.6c
Sap Sapgui 4.6d
Sap Sapgui 4.6
Sap Sapgui 4.6b
Sap Sapgui
Sap Sapgui 6.40
2 EDB exploits
9.3
CVSSv2
CVE-2008-0307
Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote malicious users to execute arbitrary code via unknown vectors that trigger heap corruption.
Sap Maxdb 7.6.0.37
7.5
CVSSv2
CVE-2018-2418
SAP MaxDB ODBC driver (all versions prior to 7.9.09.07) allows an malicious user to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.
Sap Maxdb Odbc Driver
7.5
CVSSv2
CVE-2015-2282
Stack-based buffer overflow in the LZC decompression implementation (CsObjectInt::CsDecomprLZC function in vpa106cslzc.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and ot...
Sap Maxdb 7.6
Sap Netweaver Abap Application Server -
Sap Gui -
Sap Rfc Library
Sap Maxdb 7.5
Sap Netweaver Java Application Server -
Sap Netweaver Rfc Sdk -
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »