PT-2013-6157 · Sap · Sap Sybase Adaptive Server Enterprise
Publicado
2013-11-23
·
Atualizado
2013-11-27
·
CVE-2013-6866
CVSS v2.0
9.0
Alta
| Vetor | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
SAP Sybase Adaptive Server Enterprise (ASE) versions prior to 15.0.3 ESD#4.3
SAP Sybase Adaptive Server Enterprise (ASE) versions prior to 15.5 ESD#5.3
SAP Sybase Adaptive Server Enterprise (ASE) versions prior to 15.7 SP50
SAP Sybase Adaptive Server Enterprise (ASE) versions prior to 15.7 SP100
Description
The issue allows remote authenticated users to execute arbitrary code via unspecified vectors.
Recommendations
For versions prior to 15.0.3 ESD#4.3, update to 15.0.3 ESD#4.3 or later.
For versions prior to 15.5 ESD#5.3, update to 15.5 ESD#5.3 or later.
For versions prior to 15.7 SP50, update to 15.7 SP50 or later.
For versions prior to 15.7 SP100, update to 15.7 SP100 or later.
Correção
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Sap Sybase Adaptive Server Enterprise