Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Cloudscape 5.1 running jdk 1.4.2_03 allows remote attackers to execute arbitrary programs or cause a denial of service via certain SQL code, possibly due to a SQL injection vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Cloudscape Database远程命令执行漏洞
Vulnerability Description
IBM Cloudscape Database是嵌入式Java应用数据库。 IBM Cloudscape Database不充分过滤恶意SQL命令,远程攻击者可以利用这个漏洞以应用程序权限在系统上执行任意命令。 通过使用特殊构建的SQL命令,可在执行Cloudscape数据库上的系统中执行任意代码。利用代码类似jboss/hsqldb。这个漏洞主要存在于jdk 1.4.2_03中的sun.* and org.apache.*包不充分的安全设置,当运行cloudscape而没有进行很好的安全管理时可触发此漏
CVSS Information
N/A
Vulnerability Type
N/A