Vulnerabilities

CVE-2003-0938

by Fred · 21/11/2003

vos24u.c in SAP database server (SAP DB) 7.4.03.27 and earlier allows local users to gain SYSTEM privileges via a malicious "NETAPI32.DLL" in the current working directory, which is found and loaded by SAP DB before the real DLL, as demonstrated using the SQLAT stored procedure.

Date published : 2003-11-21

http://www.atstake.com/research/advisories/2003/a111703-1.txt

https://exchange.xforce.ibmcloud.com/vulnerabilities/13765

Related

Tags: Cybersecurity Alert