CVE-2013-7245
Summary
| CVE | CVE-2013-7245 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-04-24 20:29:00 UTC |
| Updated | 2018-06-13 11:46:00 UTC |
| Description | The Backup Server component in SAP Sybase ASE 15.7 before SP51 allows remote attackers to bypass access restrictions and perform database dumps by leveraging failure to validate credentials, aka SAP Security Note 1927859. |
Risk And Classification
Problem Types: CWE-285
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Sybase | Adaptive Server Enterprise | 15.7 | All | All | All |
| Application | Sybase | Adaptive Server Enterprise | 15.7 | sp50 | All | All |
| Application | Sybase | Adaptive Server Enterprise | 15.7 | All | All | All |
| Application | Sybase | Adaptive Server Enterprise | 15.7 | sp50 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| SAP Sybase ASE 15.7 security updates - SpiderLabs Anterior | MISC | blog.spiderlabs.com | Third Party Advisory |
| www3.trustwave.com/spiderlabs/advisories/TWSL2013-035.txt | MISC | www3.trustwave.com | Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.