CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1168

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0230%
EPSS Percentile3.61th
PublishedJan 10, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbitrary code via a long Overwrite header.

Affected Platforms (CPE)

πŸ“¦
Mysql

Maxdb

= 7.5.00.08
πŸ“¦
Mysql

Maxdb

= 7.5.00.11
πŸ“¦
Mysql

Maxdb

= 7.5.00.12
πŸ“¦
Mysql

Maxdb

= 7.5.00.14
πŸ“¦
Mysql

Maxdb

= 7.5.00.15
πŸ“¦
Mysql

Maxdb

= 7.5.00.16
πŸ“¦
Mysql

Maxdb

= 7.5.00.18

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=110244542000340&w=2
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18386
πŸ”— http://marc.info/?l=bugtraq&m=110244542000340&w=2
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18386

Related Vulnerabilities

CVE-2005-127410.0

Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote ...

CVE-2006-430510.0

Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name wh...

CVE-2005-068410.0

Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (...

CVE-2008-024410.0

SAP MaxDB 7.6.03 build 007 and earlier allows remote attackers to execute arbitrary commands via "&&" and other shell metacharacte...