CVE-2005-0441 Information
Description
Multiple stack-based buffer overflows in Sybase Adaptive Server Enterprise (ASE) 12.x before 12.5.3 ESD1 allow remote authenticated users to execute arbitrary code via the (1) attrib_valid function (2) covert function (3) declare statement or (4) a crafted query plan or remote authenticated users with database owner or \sa\ role privileges to execute arbitrary code via (5) a crafted install java statement.
Reference
http://archives.neohapsis.com/archives/bugtraq/2004-12/0315.html http://marc.info/?l=bugtraq&m=111272918117194&w=2 http://secunia.com/advisories/13632 http://www.ngssoftware.com/advisories/sybase-ase.txt http://www.securityfocus.com/archive/1/393851 http://www.securityfocus.com/bid/12080 http://www.sybase.com/detail/16904103389400.html http://www.sybase.com/detail?id=1034520 http://www.sybase.com/detail?id=1034752 https://exchange.xforce.ibmcloud.com/vulnerabilities/19354 https://exchange.xforce.ibmcloud.com/vulnerabilities/19974 https://exchange.xforce.ibmcloud.com/vulnerabilities/19976 https://exchange.xforce.ibmcloud.com/vulnerabilities/19978 https://exchange.xforce.ibmcloud.com/vulnerabilities/19979 https://exchange.xforce.ibmcloud.com/vulnerabilities/19980
Share on: