Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-0912

EPSS 27.49% · P96
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-0912

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple heap-based buffer overflows in mlsrv10.exe in Sybase MobiLink 10.0.1.3629 and earlier, as used by SQL Anywhere Developer Edition 10.0.1.3415 and probably other products, allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a long (1) username, (2) version, or (3) remote ID. NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Sybase MobiLink mlsrv10.exe 远程堆溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Sybase mobilink是用于实现两个数据库之间数据同步的服务器。 MobiLink服务器在处理超长的请求数据时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 MobiLink服务器在处理用户名、版本和远程ID等字符串时存在堆溢出漏洞。如果远程攻击者在预认证期间向服务器提交了超过128字节的字符串的话,就可能触发这个溢出,导致执行任意指令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-0912

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-0912

登录查看更多情报信息。

Same Patch Batch · n/a · 2008-02-22 · 29 CVEs total

CVE-2008-0896bea_systems weblogic_portal 内容 portlets 权限许可和访问控制漏洞
CVE-2008-0909Schoolwires Academic Portal browse.asp 跨站脚本漏洞
CVE-2008-0908Schoolwires Academic Portal browse.asp SQL注入漏洞
CVE-2008-0907PHP-Nuke inhalt模块 SQL注入漏洞
CVE-2008-0906php-nuke docum模块 SQL注入漏洞
CVE-2008-0905Globsy 'globsy_edit.php' 目录遍历漏洞
CVE-2008-0904bea_systems plumtree_collaboration/AquaLogic Interaction download servlet 未明漏洞
CVE-2008-0903bea_systems weblogic server/Express 代理插件 未明漏洞
CVE-2008-0902bea_systems weblogic server/Express 多个跨站脚本攻击漏洞
CVE-2008-0901bea_systems weblogic server/Express 账户 信任管理漏洞
CVE-2008-0900bea_systems weblogic Server/express 固定会话漏洞
CVE-2008-0899bea weblogic_server/Express 管理控制台 跨站脚本攻击漏洞
CVE-2008-0898bea weblogic_server 发送信息程序 权限许可和访问控制漏洞
CVE-2008-0897bea weblogic_server JMS论题或担保分布式标题目标 权限许可和访问控制漏洞
CVE-2008-0911iScripts MultiCart 'productdetails.php' SQL注入漏洞
CVE-2008-0895bea weblogic_server/WebLogic Express 权限绕过漏洞
CVE-2008-0162SplitVT misc.c 'xprop' 本地权限提升漏洞
CVE-2008-0910F-Secure anti-virus产品 RAR程序 权限许可和访问控制漏洞
CVE-2008-0922PHP-Nuke Manuales模块 modules.php SQL注入漏洞
CVE-2008-0921beContent 'news.php' SQL 注入漏洞

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-0912

No comments yet

Leave a comment