Multiple stack-based buffer overflows in Sybase Adaptive Server Enterprise (ASE) 12.x prior to 12.5.3 ESD#1 allow remote authenticated users to execute arbitrary code via the (1) attrib_valid function, (2) covert function, (3) declare statement, or (4) a crafted query plan, or remote authenticated users with database owner or "sa" role privileges to execute arbitrary code via (5) a crafted install java statement.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sybase adaptive server enterprise 11.9.2 |
||
sybase adaptive server enterprise 12.5 |
||
sybase adaptive server enterprise 12.5.3 |
||
sybase adaptive server enterprise 12.0 |
||
sybase adaptive server enterprise 11.5 |
||
sybase adaptive server enterprise 11.03.3 |
||
sybase adaptive server enterprise 11.5.1 |
||
sybase adaptive server enterprise 12.0.1 |
||
sybase adaptive server enterprise 12.5.2 |