CVE-2008-0306

sdbstarter in SAP MaxDB 7.6.0.37, and possibly other versions, allows local users to execute arbitrary commands by using unspecified environment variables to modify configuration settings.

Date published : 2008-03-11

http://www.securityfocus.com/bid/28185

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=670