Short Name |
HTTP:OVERFLOW:MAXDB-GET-OF |
---|---|
Severity |
Major |
Recommended |
No |
Category |
HTTP |
Keywords |
MaxDB Get Overflow |
Release Date |
2005/06/01 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against MaxDB Web packages. A successful attack can allow an attacker to execute arbitrary code with elevated privileges.
A remote buffer-overflow vulnerability affects MySQL MaxDB because the application fails to properly validate the length of user-supplied strings before copying them into static process buffers. An attacker may exploit this issue to execute arbitrary code with the privileges of the user that activated the vulnerable application. This may facilitate unauthorized access or privilege escalation.