PT-2015-2350 · Sap · Sap Hana Hdbsql Client

Nahuel Sanchez

Published

2015-10-15

Updated

2015-10-16

CVE-2015-6507

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions SAP HANA hdbsql client version 1.00.091.00 Build 1418659308-1530

Description The issue is caused by a buffer overflow in the hdbsql client of the SAP HANA database management system. This can be exploited by a local user to cause a denial of service, potentially leading to memory corruption and other unspecified impacts.

Recommendations For SAP HANA hdbsql client version 1.00.091.00 Build 1418659308-1530, consider applying the fix provided in SAP Security Note 2140700 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2015-11715

CVE-2015-6507

Affected Products

Sap Hana Hdbsql Client

PT-2015-2350 · Sap · Sap Hana Hdbsql Client

CVE-2015-6507

Weakness Enumeration

Related Identifiers

Affected Products

References · 6