Total
9 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2007-3566 | 1 Borland Software | 1 Interbase | 2018-10-15 | 7.5 HIGH | N/A |
Stack-based buffer overflow in the database service (ibserver.exe) in Borland InterBase 2007 before SP2 allows remote attackers to execute arbitrary code via a long size value in a create request to port 3050/tcp. | |||||
CVE-2001-0008 | 2 Borland Software, Firebirdsql | 2 Interbase, Firebird | 2017-10-09 | 10.0 HIGH | N/A |
Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures. | |||||
CVE-2007-5243 | 1 Borland Software | 1 Interbase | 2017-07-28 | 9.3 HIGH | N/A |
Multiple stack-based buffer overflows in Borland InterBase LI 8.0.0.53 through 8.1.0.253, and WI 5.1.1.680 through 8.1.0.257, allow remote attackers to execute arbitrary code via (1) a long service attach request on TCP port 3050 to the (a) SVC_attach or (b) INET_connect function, (2) a long create request on TCP port 3050 to the (c) isc_create_database or (d) jrd8_create_database function, (3) a long attach request on TCP port 3050 to the (e) isc_attach_database or (f) PWD_db_aliased function, or unspecified vectors involving the (4) jrd8_attach_database or (5) expand_filename2 function. | |||||
CVE-2007-5244 | 1 Borland Software | 1 Interbase | 2017-07-28 | 9.3 HIGH | N/A |
Stack-based buffer overflow in Borland InterBase LI 8.0.0.53 through 8.1.0.253 on Linux, and possibly unspecified versions on Solaris, allows remote attackers to execute arbitrary code via a long attach request on TCP port 3050 to the open_marker_file function. | |||||
CVE-2004-1833 | 1 Borland Software | 1 Interbase | 2017-07-10 | 7.5 HIGH | N/A |
The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to gain database administrative privileges. | |||||
CVE-2004-2043 | 2 Borland Software, Firebirdsql | 3 Interbase, Interbase Superserver, Firebird | 2017-07-10 | 5.0 MEDIUM | N/A |
Buffer overflow in ibserver for Firebird Database 1.0 and other versions before 1.5, and possibly other products that use the InterBase codebase, allows remote attackers to cause a denial of service (crash) via a long database name, as demonstrated using the gsec command. | |||||
CVE-2003-0197 | 2 Borland Software, Firebirdsql | 2 Interbase, Firebird | 2016-10-17 | 7.2 HIGH | N/A |
Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK). | |||||
CVE-2002-2087 | 1 Borland Software | 1 Interbase | 2008-09-05 | 4.6 MEDIUM | N/A |
Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop, (2) gds_lock_mgr, or (3) gds_inet_server. | |||||
CVE-2002-1514 | 1 Borland Software | 1 Interbase | 2008-09-05 | 7.2 HIGH | N/A |
gds_lock_mgr in Borland InterBase allows local users to overwrite files and gain privileges via a symlink attack on a "isc_init1.X" temporary file, as demonstrated by modifying the xinetdbd file. |