CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-2475

Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote attackers to execute arbitrary code via format string specifiers in unspecified string fields, related to authentication logging.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.061

EPSS Ranking 90.3%

CVSS Severity

CVSS v2 Score 10.0

References

http://www.sybase.com/detail?id=1092074
http://zerodayinitiative.com/advisories/ZDI-11-171/
http://www.sybase.com/detail?id=1092074
http://zerodayinitiative.com/advisories/ZDI-11-171/

Products affected by CVE-2011-2475

Sybase » Onebridge Mobile Data Suite » Version: 5.5

cpe:2.3:a:sybase:onebridge_mobile_data_suite:5.5
Sybase » Onebridge Mobile Data Suite » Version: 5.6

cpe:2.3:a:sybase:onebridge_mobile_data_suite:5.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2475

Products

Pricing

Contact Us