CVSS: 5.0EPSS: 1%CPEs: 29EXPL: 0CVE-2005-0942
https://notcve.org/view.php?id=CVE-2005-0942
The XP Server process (xp_server) in Sybase Adaptive Server Enterprise (ASE) XP Server 12.x before 12.5.3 ESD#1 allows attackers to cause a denial of service (process crash) via malformed data sent to the XP Server TCP port. • http://archives.neohapsis.com/archives/bugtraq/2004-12/0315.html http://marc.info/?l=bugtraq&m=111272918117194&w=2 http://secunia.com/advisories/13632 http://www.ngssoftware.com/advisories/sybase-ase.txt http://www.securityfocus.com/archive/1/393851 http://www.securityfocus.com/bid/12080 http://www.sybase.com/detail/1%2C6904%2C1033894%2C00.html http://www.sybase.com/detail?id=1034520 http://www.sybase.com/detail?id=1034752 https://exchange.xforce.ibmcloud.com/vulnerabilities&# •
CVSS: 10.0EPSS: 14%CPEs: 29EXPL: 0CVE-2005-0441
https://notcve.org/view.php?id=CVE-2005-0441
Multiple stack-based buffer overflows in Sybase Adaptive Server Enterprise (ASE) 12.x before 12.5.3 ESD#1 allow remote authenticated users to execute arbitrary code via the (1) attrib_valid function, (2) covert function, (3) declare statement, or (4) a crafted query plan, or remote authenticated users with database owner or "sa" role privileges to execute arbitrary code via (5) a crafted install java statement. • http://archives.neohapsis.com/archives/bugtraq/2004-12/0315.html http://marc.info/?l=bugtraq&m=111272918117194&w=2 http://secunia.com/advisories/13632 http://www.ngssoftware.com/advisories/sybase-ase.txt http://www.securityfocus.com/archive/1/393851 http://www.securityfocus.com/bid/12080 http://www.sybase.com/detail/1%2C6904%2C1033894%2C00.html http://www.sybase.com/detail?id=1034520 http://www.sybase.com/detail?id=1034752 https://exchange.xforce.ibmcloud.com/vulnerabilities&# •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0327
https://notcve.org/view.php?id=CVE-2003-0327
Sybase Adaptive Server Enterprise (ASE) 12.5 allows remote attackers to cause a denial of service (hang) via a remote password array with an invalid length, which triggers a heap-based buffer overflow. Sybase Adaptive Serve Enterprise (ASE) 12.5 permite a atacantes remotos causar una denegación de servicio (cuelgue) mediante una contraseña remota con una longitud inválida, lo que dispara un desbordamiento de búfer en el montón. • http://marc.info/?l=bugtraq&m=106936096103805&w=2 http://www.rapid7.com/advisories/R7-0016.html https://exchange.xforce.ibmcloud.com/vulnerabilities/13800 •
CVSS: 10.0EPSS: 16%CPEs: 2EXPL: 1CVE-2002-2250
https://notcve.org/view.php?id=CVE-2002-2250
Multiple buffer overflows in Sybase Adaptive Server 12.0 and 12.5 allow remote attackers to execute arbitrary code via (1) a long parameter to the xp_freedll extended stored procedure or (2) a long database name argument to the DBCC CHECKVERIFY function. • http://archives.neohapsis.com/archives/ntbugtraq/2002-q4/0080.html http://archives.neohapsis.com/archives/ntbugtraq/2002-q4/0082.html http://cert.uni-stuttgart.de/archive/bugtraq/2002/11/msg00361.html http://cert.uni-stuttgart.de/archive/bugtraq/2002/11/msg00364.html http://www.appsecinc.com/resources/alerts/sybase/02-0001.html http://www.appsecinc.com/resources/alerts/sybase/02-0003.html http://www.iss.net/security_center/static/10719.php http://www.securityfocus.com/bid/6266 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2002-1861
https://notcve.org/view.php?id=CVE-2002-1861
Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). • http://online.securityfocus.com/archive/1/279582 http://www.iss.net/security_center/static/9446.php http://www.securityfocus.com/bid/5119 http://www.westpoint.ltd.uk/advisories/wp-02-0002.txt •