First published: Tue Apr 24 2018(Updated: )
The Backup Server component in SAP Sybase ASE 15.7 before SP51 allows remote attackers to bypass access restrictions and perform database dumps by leveraging failure to validate credentials, aka SAP Security Note 1927859.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
SAP Sybase Adaptive Server Enterprise | =15.7 | |
SAP Sybase Adaptive Server Enterprise | =15.7-sp50 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-7245 is considered a critical vulnerability allowing remote attackers to bypass access restrictions.
To fix CVE-2013-7245, upgrade SAP Sybase ASE 15.7 to at least SP51 or apply relevant security patches.
CVE-2013-7245 can be exploited to perform unauthorized database dumps by bypassing credential validation.
CVE-2013-7245 affects SAP Adaptive Server Enterprise 15.7 and specific SP50 builds.
There is no officially documented workaround for CVE-2013-7245; upgrading is the recommended action.