Application Security, Inc.
home client login partner login online store contact us
search:
Solutions Products Partners Support News & Events About Us

Security Updates - ASAP™ Updates
(Application Security Automatic Protection)

AppDetective™ Update 2.5.98 - 27 November 2002

NEW CHECKS

Sybase

Title: DBCC CHECKVERIFY buffer overflow
Summary:
The built-in function DBCC CHECKVERIFY contains a buffer overflow that may allow an attacker to overwrite the stack and execute arbitrary code under the security context of the server. Any valid login in Sybase is able to execute this function.
NOTE: Team SHATTER Security Alert

Title: DROP DATABASE buffer overflow
Summary:
The built-in function DROP DATABASE contains a buffer overflow that may allow an attacker to overwrite the stack and execute arbitrary code under the security context of the server. Any valid login in Sybase is able to execute this function.
NOTE: Team SHATTER Security Alert

Title: xp_freedll buffer overflow
Summary:
The extended stored procedure xp_freedll contains a buffer overflow that may allow an attacker to overwrite the stack and execute arbitrary code under the security context of the server. Execute permissions are granted by default to public in the sybsystemprocs database on this extended stored procedure.
NOTE: Team SHATTER Security Alert

Return to ASAP™ Updates Listing
 
Contact Us | Privacy | Sitemap | Legal
sales@appsecinc.com | support@appsecinc.com 		Call us toll free at: 1-866-927-7732 | FAX: 1-212-947-8788
. Application Security, Inc. All Rights Reserved