database software vulnerabilities
vulnerabilities.aspcode.net
Searching database software vulnerabilities
A database service is running, e.g. a SQL serve
database
|
running
|
service
|
server
|
Oracle
|
mySQL
|
SQL
|
A database service is running, e.g. a SQL server, Oracle, or mySQL.
Oracle Database Assistant 1.0 in Oracle 8.0.3 E
Assistant
|
Database
|
Oracle
|
Oracle Database Assistant 1.0 in Oracle 8.0.3 Enterprise Edition stores the database master password in plaintext in the spoolmain.log file when a new database is created, which allows local users to obtain the password from that file.
MidiCart stores the midicart.mdb database file
midicartmdb
|
information
|
requesting
|
sensitive
|
attackers
|
document
|
directly
|
database
|
MidiCart
|
remote
|
stores
|
allows
|
under
|
steal
|
which
|
file
|
root
|
Web
|
MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database.
Cisco ONS15454 and ONS15327 running ONS before
privileges
|
cleartext
|
passwords
|
usernames
|
obtaining
|
attackers
|
database
|
ONS15327
|
ONS15454
|
running
|
stores
|
backup
|
before
|
could
|
allow
|
which
|
image
|
Cisco
|
gain
|
TCC+
|
ONS
|
TCC
|
XTC
|
Cisco ONS15454 and ONS15327 running ONS before 3.4 stores usernames and passwords in cleartext in the image database for the TCC, TCC+ or XTC, which could allow attackers to gain privileges by obtaining the passwords from the image database or a backup.
phpRank 1.8 does not properly check the return
authenticating
|
authenticate
|
unavailable
|
operations
|
attackers
|
password
|
database
|
properly
|
phpRank
|
remote
|
errors
|
return
|
using
|
occur
|
MySQL
|
codes
|
check
|
users
|
could
|
allow
|
which
|
does
|
NULL
|
not
|
phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occur or if the database is unavailable.
Multiple SQL injection vulnerabilities in IMP 2
vulnerabilities
|
injection
|
Multiple
|
IMP
|
SQL
|
Multiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow remote attackers to perform unauthorized database activities and possibly gain privileges via certain database functions such as check_prefs() in db.pgsql, as demonstrated using mailbox.php3.
Mantis 0.17.5 and earlier stores its database p
Mantis
|
Mantis 0.17.5 and earlier stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations.
Stack-based buffer overflow in the PL/SQL EXTPR
functionality
|
authenticated
|
Stack-based
|
arbitrary
|
Oracle9i
|
Database
|
overflow
|
execute
|
Release
|
library
|
EXTPROC
|
PL/SQL
|
buffer
|
Oracle
|
allows
|
users
|
cases
|
long
|
name
|
some
|
code
|
via
|
Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name.
Multiple buffer overflows in the XML Database (
overflows
|
Database
|
Multiple
|
buffer
|
XML
|
Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.
EarlyImpact ProductCart 1.0 through 2.0 stores
database/EIPCmdb
|
insufficient
|
EarlyImpact
|
information
|
ProductCart
|
sensitive
|
attackers
|
database
|
control
|
request
|
through
|
obtain
|
stores
|
direct
|
allows
|
remote
|
access
|
which
|
under
|
root
|
web
|
via
|
EarlyImpact ProductCart 1.0 through 2.0 stores database/EIPC.mdb under the web root with insufficient access control, which allows remote attackers to obtain sensitive database information via a direct request.
Buffer overflow in Microsoft Jet Database Engin
specially-crafted
|
arbitrary
|
attackers
|
Microsoft
|
overflow
|
Database
|
execute
|
remote
|
Buffer
|
Engine
|
allows
|
query
|
code
|
Jet
|
via
|
Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query.
Spider Sales shopping cart stores the private k
shopping
|
database
|
private
|
decrypt
|
allows
|
Spider
|
public
|
stores
|
access
|
users
|
local
|
which
|
Sales
|
table
|
cart
|
same
|
data
|
key
|
Spider Sales shopping cart stores the private key in the same database and table as the public key, which allows local users with access to the database to decrypt data.
ASPRunner 2.4 stores the database under the web
predictable
|
attackers
|
directory
|
ASPRunner
|
database
|
filename
|
request
|
remote
|
direct
|
obtain
|
stores
|
based
|
table
|
under
|
names
|
allow
|
field
|
which
|
root
|
may
|
via
|
web
|
ASPRunner 2.4 stores the database under the web root in the db directory, which may allow remote attackers to obtain the database via a direct request to the database filename, which is predictable based on table and field names.
The "reset password" feature in Macromedia Bree
Macromedia
|
passwords
|
attackers
|
plaintext
|
password"
|
database
|
instead
|
feature
|
access
|
allows
|
"reset
|
stores
|
Breeze
|
obtain
|
which
|
hash
|
The "reset password" feature in Macromedia Breeze 5.0 stores passwords in plaintext in the database instead of the hash, which allows attackers with access to the database to obtain the passwords.
Unspecified vulnerability in Database Scheduler
vulnerability
|
Unspecified
|
Scheduler
|
Database
|
Server
|
Oracle
|
10g
|
Unspecified vulnerability in Database Scheduler in Oracle Database Server 10g up to 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# DB08.
PostgreSQL 8.1.0 through 8.1.2 allows authentic
PostgreSQL
|
PostgreSQL 8.1.0 through 8.1.2 allows authenticated database users to gain additional privileges via "knowledge of the backend protocol" using a crafted SET ROLE to other database users, a different vulnerability than CVE-2006-0678.
** DISPUTED ** Kwik-Pay Payroll 4.2.20, and po
Kwik-Pay
|
DISPUTED
|
Payroll
|
** DISPUTED ** Kwik-Pay Payroll 4.2.20, and possibly other versions, stores the KwikPay.mdb database file with insecure permissions, which allows local users to obtain sensitive information such as employment and payment data. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. NOTE: the vendor has disputed this vulnerability, stating that "The kwikpay.mdb file supplied with kwikpay is a template for the database structure of user databases created by kwikpay and to store a demonstration payroll. It does not contain any sensitive user information. When a user payroll database is opened, the encryption of the database is checked and if the database is not encrypted, the user is prompted to encrypt the database, but the choice is the customers."
Buffer overflow in the Advanced Replication com
Replication
|
component
|
overflow
|
Database
|
Advanced
|
Server
|
Buffer
|
Oracle
|
Buffer overflow in the Advanced Replication component in Oracle Database Server 10.1.0.4 allows database users to execute arbitrary code via the VERIFY_LOG procedure of the DBMS_SNAPSHOT_UTL package, aka Vuln# DB03.
MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1
before
|
MySQL
|
MySQL before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the database name differs only in case from a database for which they have permissions.
Firebird 1.5 allows remote authenticated users
authenticated
|
permissions
|
overwrite
|
Firebird
|
creating
|
database
|
without
|
remote
|
SYSDBA
|
allows
|
owner
|
users
|
Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database.
Software vulnerabilities results 1 to 20 of 512
Page:
1
2
3
4
5
...
26
►