Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security VulnWatch
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Sybase ASE 12.5.2 vulnerabilities

from [NGSSoftware Insight Security Research] Network Security [Permanent Link]
Subject: Sybase ASE 12.5.2 vulnerabilities
Date: Wed, 22 Dec 2004 15:52:50 +0000 
Sherief Hammad of NGSSoftware has discovered three high risk security
vulnerabilities in Sybase Adaptive Server Enterprise 12.5.2.

Sybase ASE versions 12.5.2 and older are vulnerable to these issues.

These vulnerabilities have now been fixed by Sybase in the Sybase
ASE 12.5.3 interim release which can be downloaded from the
sybase website:

http://www.sybase.com/products/informationmanagement/adaptiveserverenterprise

NGSSoftware are going to withhold details about these flaws for three
months. Full details will be published on or after the 22nd of March 2005.

This three month window will allow users of Sybase the time needed to
download the updated version before the details are released to the
general public. This reflects NGSSoftware's new approach to responsible
disclosure.

NGSSoftware Insight Security Research
http://www.databasesecurity.com/
http://www.ngssoftware.com/
+44(0)208 401 0070


[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Sybase ASE 12.5.2 vulnerabilities, NGSSoftware Insight Security Research <=
Previous by Date:  Re: iDEFENSE Security Advisory 12.21.04: libtiff STRIPOFFSETS Integer Overflow Vulnerability, Dmitry V. Levin
Next by Date:  [VulnWatch] iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability, customer service mailbox
Previous by Thread:  [VulnWatch] iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler Negative Read Length Heap Overflow Vulnerability, customer service mailbox
Next by Thread:  [VulnWatch] iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability, customer service mailbox
Indexes:  [Date] [Thread] [Top] [All Lists]