CVE-2014-9264
SAP SQL Anywhere - Stack-based Buffer Overflow via Crafted Column Alias
Title source: llmDescription
Stack-based buffer overflow in the .NET Data Provider in SAP SQL Anywhere allows remote attackers to execute arbitrary code via a crafted column alias.
References (4)
Core 4
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-413/
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-412/
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-414/
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-415/
Scores
EPSS
0.0426
EPSS Percentile
88.9%
Details
CWE
CWE-119
Status
published
Products (1)
sap/sql_anywhere
Published
Dec 11, 2014
Tracked Since
Feb 18, 2026