SAP ASE 16.0 SP02 PL03 and prior versions allow attackers who own SourceDB and TargetDB databases to elevate privileges to sa (system administrator) via dbcc import_sproc SQL injection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sybase adaptive server enterprise |