VULHUB ™

Sybase Adaptive Server Enterprise is prone to a buffer overflow vulnerability. This issue arises when the server handles a malformed abstract query plan. A user can supply a malicious query plan containing excessive data in a manner that triggers a buffer overflow condition. If successful, this can lead to memory corruption and execution of arbitrary code in the context of Sybase Adaptive Server. Attack attempts may also result in a denial of service condition. Sybase Adaptive Server Enterprise versions 12.5.3 and prior are reported vulnerable to these issues. The issue outlined in this BID was previously presented in BID 12080 (Sybase Adaptive Server Enterprise Multiple Vulnerabilities) along with other issues; each issue is being assigned its own BID. This BID 12080 is being retired.

Sybase Adaptive Server Enterprise is prone to a buffer overflow vulnerability. This issue arises when the server handles a malformed abstract query plan. A user can supply a malicious query plan containing excessive data in a manner that triggers a buffer overflow condition. If successful, this can lead to memory corruption and execution of arbitrary code in the context of Sybase Adaptive Server. Attack attempts may also result in a denial of service condition. Sybase Adaptive Server Enterprise versions 12.5.3 and prior are reported vulnerable to these issues. The issue outlined in this BID was previously presented in BID 12080 (Sybase Adaptive Server Enterprise Multiple Vulnerabilities) along with other issues; each issue is being assigned its own BID. This BID 12080 is being retired.