Alias(es)MySQL.MaxDB.HTTP.GET.Request.Buffer.Overflow, MySQL.MaxDB.HTTP.GET.Request.Overflow.B |
Release DateSep 11, 2006 |
Severityhigh |
ImpactCompromise of the affected system. |
DescriptionThis indicates a possible exploit of a stack-based buffer overflow vulnerability in MySQL AB MaxDB.MaxDB, by MySQL, is an enhanced version of open source SAP DB that is used in enterprises for high availability and scalability of database functionality. A buffer overflow vulnerability is reported in it that may allow an attacker to execute arbitrary code on a vulnerable system. This is due to the application's failure to properly validate a user HTTP GET request before processing it. An attacker may send a specially crafted HTTP GET request with a long file parameter after the % sign. For exploitation, the string length will be more than 4000 bytes. Successful exploitation of the vulnerability can allow remote attackers to execute code with SYSTEM privileges. |
Affected ProductsMySQL AB MaxDB 7.5 .00.25 and earlier versions. |
Recommended ActionsUpgrade to MySQL AB MaxDB 7.5 .00.26 or later versions. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2005-0684 |
Reference/shttp://www.securityfocus.com/bid/13369 (BugTraq)http://www.securityfocus.com/bid/13368 (BugTraq) |
