CVE-2005-1274

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1650%

EPSS Percentile1.97th

PublishedApr 26, 2005

Last ModifiedApr 16, 2026

Vulnerability Description

Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via an HTTP unlock request and a long "If" parameter.

Affected Platforms (CPE)

📦

Mysql

Maxdb

<= 7.5.00.23

📦

Mysql

Maxdb

= 7.5.00.25

References & Advisories

🔗 http://www.idefense.com/application/poi/display?id=236&type=vulnerabilities

Related Vulnerabilities

CVE-2006-430510.0

Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name wh...

CVE-2005-068410.0

Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (...

CVE-2004-116810.0

Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbit...

CVE-2008-024410.0

SAP MaxDB 7.6.03 build 007 and earlier allows remote attackers to execute arbitrary commands via "&&" and other shell metacharacte...