Added: 12/22/2005
CVE: CVE-2005-0684
BID: 13368
OSVDB: 15816
MaxDB is a SAP-certified open-source database developed by MySQL. The WebTools component offers a set of database tools which are accessible from a web browser. The wahttp program listens on port 9999 and processes HTTP requests.
A buffer overflow in the handling of long variable names allows remote command execution by requesting a long, specially crafted URI containing a percent character.
Upgrade to a fixed version of MaxDB.
[http://www.idefense.com/intelligence/vulnerabilities/display.php?id=234&type=vulnerabilities ](<http://www.idefense.com/intelligence/vulnerabilities/display.php?id=234&type=vulnerabilities
>)
Exploit works on MaxDB 7.5.00.24.
Windows
Red Hat / CentOS / Linux