NuytsTech Security

CVE-2016-7402

by ·

SAP ASE 16.0 SP02 PL03 and prior versions allow attackers who own SourceDB and TargetDB databases to elevate privileges to sa (system administrator) via dbcc import_sproc SQL injection.

Date published : 2016-11-03

http://www.securityfocus.com/bid/92950

https://www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2016-017/?fid=8409

Tags: