MySQL MaxDB WebTools special character buffer overflow

Added: 12/22/2005
CVE: CVE-2005-0684
BID: 13368
OSVDB: 15816

Background

MaxDB is a SAP-certified open-source database developed by MySQL. The WebTools component offers a set of database tools which are accessible from a web browser. The wahttp program listens on port 9999 and processes HTTP requests.

Problem

A buffer overflow in the handling of long variable names allows remote command execution by requesting a long, specially crafted URI containing a percent character.

Resolution

Upgrade to a fixed version of MaxDB.

References

http://www.idefense.com/intelligence/vulnerabilities/display.php?id=234&type=vulnerabilities

Limitations

Exploit works on MaxDB 7.5.00.24.

Platforms

Windows
Red Hat / CentOS / Linux

Back to exploit index