CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-0684

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1780%
EPSS Percentile18.46th
Published2005年4月25日
Last Modified2026年4月16日

Vulnerability Description

Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c.

Affected Platforms (CPE)

📦
Mysql

Maxdb

= 7.5.00
📦
Mysql

Maxdb

= 7.5.00.08
📦
Mysql

Maxdb

= 7.5.00.11
📦
Mysql

Maxdb

= 7.5.00.12
📦
Mysql

Maxdb

= 7.5.00.14
📦
Mysql

Maxdb

= 7.5.00.15
📦
Mysql

Maxdb

= 7.5.00.16
📦
Mysql

Maxdb

= 7.5.00.18
📦
Mysql

Maxdb

= 7.5.00.19
📦
Mysql

Maxdb

= 7.5.00.23

References & Advisories

🔗 http://dev.mysql.com/doc/maxdb/changes/changes_7.5.00.26.html#WebDAV
🔗 http://www.idefense.com/application/poi/display?id=234&type=vulnerabilities
🔗 http://www.idefense.com/application/poi/display?id=235&type=vulnerabilities
🔗 http://www.securityfocus.com/bid/13368
🔗 http://dev.mysql.com/doc/maxdb/changes/changes_7.5.00.26.html#WebDAV
🔗 http://www.idefense.com/application/poi/display?id=234&type=vulnerabilities
🔗 http://www.idefense.com/application/poi/display?id=235&type=vulnerabilities
🔗 http://www.securityfocus.com/bid/13368

関連する脆弱性情報

CVE-2006-430510.0

Buffer overflow in SAP DB and MaxDB before 7.6.00.30 allows remote attackers to execute arbitrary code via a long database name wh...

CVE-2005-127410.0

Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote ...

CVE-2004-116810.0

Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbit...

CVE-2008-024410.0

SAP MaxDB 7.6.03 build 007 and earlier allows remote attackers to execute arbitrary commands via "&&" and other shell metacharacte...