HTTP: MaxDB Get Overflow
This signature detects attempts to exploit a known vulnerability against MaxDB Web packages. A successful attack can allow an attacker to execute arbitrary code with elevated privileges.
Extended Description
A remote buffer-overflow vulnerability affects MySQL MaxDB because the application fails to properly validate the length of user-supplied strings before copying them into static process buffers. An attacker may exploit this issue to execute arbitrary code with the privileges of the user that activated the vulnerable application. This may facilitate unauthorized access or privilege escalation.
Affected Products
Mysql_ab maxdb
References
BugTraq: 13368
CVE: CVE-2005-0684
URL: http://www.securityfocus.com/bid/13368 http://www.securitytracker.com/alerts/2005/Apr/1013801.html
Short Name
HTTP:OVERFLOW:MAXDB-GET-OF
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2005-0684 Get MaxDB Overflow bid:13368
Release Date
06/01/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3724
False Positive
Frequently
Vendors
Mysql_ab
CVSS Score
10.0