PT-2014-5336 · Sap · Sap Sybase Esp

Published

2014-05-22

Updated

2014-05-22

CVE-2014-3457

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions SAP Sybase ESP (affected versions not specified)

Description The issue affects the SAP Sybase ESP, where remote code execution is possible due to vulnerabilities in the esp parse connection. The vulnerabilities are related to various methods, including getFieldNames, getTableNames, isInput, dispose, getConnection, setScanDepth, canDiscover, destroy, setParams, getSampleRow, getFieldTypes, reset, and getError.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2014-3457

ZDI-14-146

ZDI-14-147

ZDI-14-148

ZDI-14-149

ZDI-14-150

ZDI-14-151

ZDI-14-152

ZDI-14-153

ZDI-14-154

ZDI-14-155

ZDI-14-156

ZDI-14-157

ZDI-14-158

Affected Products

Sap Sybase Esp

PT-2014-5336 · Sap · Sap Sybase Esp

CVE-2014-3457

Related Identifiers

Affected Products

References · 13