Filtered by vendor Sybase
Subscriptions
Total
37 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2013-6866 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-17 | N/A |
SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka CR736689. | ||||
CVE-2013-6863 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-17 | N/A |
SAP Sybase Adaptive Server Enterprise (ASE) 15.0.3 before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to gain privileges via unspecified vectors. | ||||
CVE-2012-4340 | 1 Sybase | 1 Easerver | 2024-09-17 | N/A |
Cross-site scripting (XSS) vulnerability in Sybase EAServer before 6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||
CVE-2013-6865 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-17 | N/A |
SAP Sybase Adaptive Server Enterprise (ASE) 15.0.3 before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka CR732989. | ||||
CVE-2013-6868 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-17 | N/A |
SAP Sybase Adaptive Server Enterprise (ASE) 15.0.3 before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows local users to obtain sensitive information via unspecified vectors. | ||||
CVE-2011-2475 | 1 Sybase | 1 Onebridge Mobile Data Suite | 2024-09-17 | N/A |
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote attackers to execute arbitrary code via format string specifiers in unspecified string fields, related to authentication logging. | ||||
CVE-2013-6862 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-17 | N/A |
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote attackers to cause a denial of service via unspecified vectors. | ||||
CVE-2013-6864 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-16 | N/A |
Directory traversal vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) 15.0.3 before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to affect confidentiality, integrity, and availability via unspecified vectors. | ||||
CVE-2002-1861 | 1 Sybase | 1 Easerver | 2024-09-16 | N/A |
Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | ||||
CVE-2013-6861 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-16 | N/A |
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) 15.0.3 before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows local users to obtain sensitive information via unspecified vectors. | ||||
CVE-2011-5078 | 1 Sybase | 1 M-business Anywhere | 2024-09-16 | N/A |
The web administration interface in the server in Sybase M-Business Anywhere 6.7 before ESD# 3 and 7.0 before ESD# 7 does not require admin authentication for unspecified scripts, which allows remote authenticated users to list or delete user accounts, modify passwords, or read log files via HTTP requests, aka Bug IDs 678497 and 678499. | ||||
CVE-2011-2474 | 1 Sybase | 1 Easerver | 2024-09-16 | N/A |
Directory traversal vulnerability in the HTTP Server in Sybase EAServer 6.3.1 Developer Edition allows remote attackers to read arbitrary files via a /.\../\../\ sequence in a path. | ||||
CVE-2013-6859 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-16 | N/A |
SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3. 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 does not properly perform authorization, which allows remote authenticated users to gain privileges via unspecified vectors. | ||||
CVE-2013-6860 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-16 | N/A |
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to obtain sensitive information via unspecified vectors. | ||||
CVE-2013-6867 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-09-16 | N/A |
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) 15.7 before 15.7 SP50 or 15.7 SP100 allows remote attackers to cause a denial of service via unspecified vectors. | ||||
CVE-2001-0599 | 1 Sybase | 1 Adaptive Server Anywhere | 2024-08-08 | N/A |
Sybase Adaptive Server Anywhere Database Engine 6.0.3.2747 and earlier as included with Symantec Ghost 6.5 allows a remote attacker to create a denial of service by sending large (> 45Kb) amounts of data to port 2638. | ||||
CVE-2002-2250 | 1 Sybase | 1 Adaptive Server | 2024-08-08 | N/A |
Multiple buffer overflows in Sybase Adaptive Server 12.0 and 12.5 allow remote attackers to execute arbitrary code via (1) a long parameter to the xp_freedll extended stored procedure or (2) a long database name argument to the DBCC CHECKVERIFY function. | ||||
CVE-2003-0327 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-08-08 | N/A |
Sybase Adaptive Server Enterprise (ASE) 12.5 allows remote attackers to cause a denial of service (hang) via a remote password array with an invalid length, which triggers a heap-based buffer overflow. | ||||
CVE-2005-2297 | 1 Sybase | 1 Easerver | 2024-08-07 | N/A |
Stack-based buffer overflow in TreeAction.do in Sybase EAServer 4.2.5 through 5.2 allows remote authenticated users to execute arbitrary code via a large javascript parameter. | ||||
CVE-2005-0942 | 1 Sybase | 1 Adaptive Server Enterprise | 2024-08-07 | N/A |
The XP Server process (xp_server) in Sybase Adaptive Server Enterprise (ASE) XP Server 12.x before 12.5.3 ESD#1 allows attackers to cause a denial of service (process crash) via malformed data sent to the XP Server TCP port. |