Unrated severityNVD Advisory· Published Mar 29, 2010· Updated Apr 29, 2026

CVE-2010-1185

Description

Stack-based buffer overflow in serv.exe in SAP MaxDB 7.4.3.32, and 7.6.0.37 through 7.6.06 allows remote attackers to execute arbitrary code via an invalid length parameter in a handshake packet to TCP port 7210. NOTE: some of these details are obtained from third party information.

Affected products

SAP/Maxdb3 versions
cpe:2.3:a:sap:maxdb:7.4.3.32:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:sap:maxdb:7.4.3.32:*:*:*:*:*:*:*
- cpe:2.3:a:sap:maxdb:7.6.0.37:*:*:*:*:*:*:*
- cpe:2.3:a:sap:maxdb:7.6.06:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/38769nvdExploit
secunia.com/advisories/38955nvdVendor Advisory
www.vupen.com/english/advisories/2010/0643nvdVendor Advisory
osvdb.org/63047nvd
www.securityfocus.com/archive/1/510125/100/0/threadednvd
www.securitytracker.com/idnvd
www.zerodayinitiative.com/advisories/ZDI-10-032/nvd
exchange.xforce.ibmcloud.com/vulnerabilities/56950nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.029
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000