Arbitrary Code Execution via Stack-based Buffer Overflow in Sybase EAServer

Arbitrary Code Execution via Stack-based Buffer Overflow in Sybase EAServer

CVE-2005-2297 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Stack-based buffer overflow in TreeAction.do in Sybase EAServer 4.2.5 through 5.2 allows remote authenticated users to execute arbitrary code via a large javascript parameter.

Learn more about our Cis Benchmark Audit For Server Software.