Trustwave, a cybersecurity firm, has recently disclosed the details of various vulnerabilities in the SAP Adaptive Server Enterprise (ASE). In the financial industry, SAP ASE is a relational DBMS that is used by many banks and financial organizations. The researchers have analyzed the details of SAP ASE and found around six vulnerabilities – and among them, most are of high or critical severity rating.
As per the company, the security holes can enable unprivileged attackers to get full control of the database and yet the underlying operating system (OS). They can also carry out arbitrary code with LocalSystem permissions on the Windows systems.