Buffer overflow in the WAECHO default service in web-tools in SAP DB before 7.4.03.30 allows remote attackers to execute arbitrary code via a URL with a long requestURI.
CVSS Score
7.5
EPSS Score
0.032
Published
2003-12-15
The Web Database Manager in web-tools for SAP DB before 7.4.03.30 generates predictable session IDs, which allows remote attackers to conduct unauthorized activities.
CVSS Score
7.5
EPSS Score
0.009
Published
2003-12-15
Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed.
CVSS Score
6.2
EPSS Score
0.002
Published
2003-05-27
Page 2