CVE-2007-5244

Properties

Published:
05.10.2007
Updated:
27.10.2007
Patch available:
Severity:
High
CVSS vector:
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Product:
Borland Software: Interbase
Borland Software: Interbase
Borland Software: Interbase

Vulnerability description

Stack-based buffer overflow in Borland InterBase LI 8.0.0.53 through 8.1.0.253 on Linux, and possibly unspecified versions on Solaris, allows remote attackers to execute arbitrary code via a long attach request on TCP port 3050 to the open_marker_file function.

References:

http://risesecurity.org/advisory/RISE-2007002/: http://risesecurity.org/advisory/RISE-2007002/
http://risesecurity.org/blog/entry/3/: http://risesecurity.org/blog/entry/3/
http://risesecurity.org/exploit/11/: http://risesecurity.org/exploit/11/
BID: http://www.securityfocus.com/bid/25917