cbcvebase.

Mysql Maxdb vulnerabilities

10 known vulnerabilities affecting mysql/maxdb.

Total CVEs
10
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH1MEDIUM5

Vulnerabilities

Page 1 of 1
CVE-2006-4305P2CRITICALCVSS 10.0PoC≤ 7.6.00.222006-08-30
CVE-2006-4305 [CRITICAL] CVE-2006-4305: Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary co Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name when connecting via a WebDBM client.
nvd
CVE-2005-0684P2CRITICALCVSS 10.0PoCv7.5.00v7.5.00.08+8 more2005-04-25
CVE-2005-0684 [CRITICAL] CVE-2005-0684: Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers t Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.
nvd
CVE-2005-1274P3CRITICALCVSS 10.0≤ 7.5.00.23v7.5.00.252005-04-26
CVE-2005-1274 [CRITICAL] CVE-2005-1274: Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB b Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via an HTTP unlock request and a long "If" parameter.
nvd
CVE-2004-1168P3CRITICALCVSS 10.0v7.5.00.08v7.5.00.11+5 more2005-01-10
CVE-2004-1168 [CRITICAL] CVE-2004-1168: Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows rem Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbitrary code via a long Overwrite header.
nvd
CVE-2005-0111P3HIGHCVSS 7.5v7.5.002005-01-13
CVE-2005-0111 [HIGH] CVE-2005-0111: Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote attackers Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote attackers to execute arbitrary code via a long password parameter.
nvd
CVE-2004-0931P4MEDIUMCVSS 5.0v7.5.00.08v7.5.00.11+4 more2004-12-31
CVE-2004-0931 [MEDIUM] CVE-2004-0931: MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTT MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTTP request to webdbm with high ASCII values in the Server field, which triggers an assert error in the IsAscii7 function.
nvd
CVE-2005-0081P4MEDIUMCVSS 5.0v7.5.00v7.5.00.08+7 more2005-04-14
CVE-2005-0081 [MEDIUM] CVE-2005-0081: MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial o MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via an HTTP request with invalid headers.
nvd
CVE-2005-0082P4MEDIUMCVSS 5.0v7.5.00v7.5.00.08+7 more2005-04-14
CVE-2005-0082 [MEDIUM] CVE-2005-0082: The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent to crash.
nvd
CVE-2005-0083P4MEDIUMCVSS 5.0v7.5.002005-05-02
CVE-2005-0083 [MEDIUM] CVE-2005-0083: MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote att MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote attackers to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_String::ReallocString, (2) DBMCli_String::operator, (3) DBMCli_Buffer::ForceResize, (4) DBMCli_Wizard::InstallDatabase, (5) DBMCli_Devspaces::Complete, (6) DBMWeb_T
nvd
CVE-2004-1169P4MEDIUMCVSS 5.0v7.5.00.08v7.5.00.11+5 more2005-01-10
CVE-2004-1169 [MEDIUM] CVE-2004-1169: MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause a denial of service (applicati MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns, which causes a NULL dereference.
nvd
Mysql Maxdb vulnerabilities | cvebase