Vulnerabilities

CVE-2013-6025

by Fred · 19/10/2013

The XMLParse procedure in SAP Sybase Adaptive Server Enterprise (ASE) 15.7 ESD 2 allows remote authenticated users to read arbitrary files via a SQL statement containing an XML document with an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Date published : 2013-10-19

http://www.securityfocus.com/bid/63193

http://www.kb.cert.org/vuls/id/303900

Similar

Tags: Cybersecurity Alert