CVE-2007-4639

EnterpriseDB Advanced Server 8.2 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4639. PoCs published by Joxean Koret.

AI-analyzed exploit summary This exploit demonstrates an uninitialized-pointer vulnerability in EnterpriseDB Advanced Server 8.2. By executing a specific SQL query with a crafted argument, an authenticated attacker can trigger a denial-of-service (DoS) condition, potentially leading to remote code execution.

Description

EnterpriseDB Advanced Server 8.2 does not properly handle certain debugging function calls that occur before a call to pldbg_create_listener, which allows remote authenticated users to cause a denial of service (daemon crash) and possibly execute arbitrary code via a SELECT statement that invokes a pldbg_ function, as demonstrated by (1) pldbg_get_stack and (2) pldbg_abort_target, which triggers use of an uninitialized pointer.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Joxean Koret · textdoslinux

https://www.exploit-db.com/exploits/30542

View Code ZIP pw:eip

This exploit demonstrates an uninitialized-pointer vulnerability in EnterpriseDB Advanced Server 8.2. By executing a specific SQL query with a crafted argument, an authenticated attacker can trigger a denial-of-service (DoS) condition, potentially leading to remote code execution.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: EnterpriseDB Advanced Server 8.2

Auth required

Prerequisites: Authenticated access to the database · Execution privilege over pldbg_* functions

MITRE ATT&CK