• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Sybase Adaptive Server DROP DATABASE Buffer Overflow Vulnerability

A buffer overflow vulnerability has been reported for the Sybase Adapative Server. The vulnerability exists in the DROP DATABASE function.

The DROP DATABASE function does not perform sufficient checks on the length of the string that is supplied as input when the function is called. This will trigger the buffer overflow condition if this input is overly long.

An attacker may exploit this vulnerability to cause the database process to execute malicious attacker-supplied code.