Buffer Overflow in SAP DB and MaxDB Versions Prior to 7.6.00.30
CVE-2006-4305

Currently unrated

Key Information:

Vendor: SAP-db
Status: SAP-db; Maxdb
Vendor: CVE Published:; 30 August 2006

What is CVE-2006-4305?

A buffer overflow vulnerability exists in SAP DB and MaxDB versions prior to 7.6.00.30. This flaw allows remote attackers to execute arbitrary code by sending a specially crafted long database name while connecting through the WebDBM client. Exploitation of this vulnerability can lead to unauthorized access and manipulation of system functionalities.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/28636

vdb-entryx_refsource_XF

http://www.symantec.com/enterprise/research/SYMSA-2006-00...

x_refsource_MISC

http://www.debian.org/security/2006/dsa-1190

vendor-advisoryx_refsource_DEBIAN

EPSS Score

74% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 30, 2006
Vulnerability Reserved
Aug 22, 2006

SAP-db

What is CVE-2006-4305?

References

EPSS Score

Timeline