{"id": "KLA10092", "bulletinFamily": "info", "title": "\r KLA10092LPE vulnerability in Borland Interbase ", "description": "### *Detect date*:\n04/11/2003\n\n### *Severity*:\nHigh\n\n### *Description*:\nA buffer overflow was found in Borland Interbase. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally at a point related to gds_lock_mgr via specially designed environment variables.\n\n### *Affected products*:\nBorland Interbase Database 6 all versions\n\n### *Solution*:\nUpdate to latest version\n\n### *Impacts*:\nPE \n\n### *Related products*:\n[Borland Interbase](<https://threats.kaspersky.com/en/product/Borland-Interbase/>)\n\n### *CVE-IDS*:\n[CVE-2003-0197](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0197>)7.2High", "published": "2003-04-11T00:00:00", "modified": "2020-05-22T00:00:00", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://threats.kaspersky.com/en/vulnerability/KLA10092", "reporter": "Kaspersky Lab", "references": [], "cvelist": ["CVE-2003-0197"], "type": "kaspersky", "lastseen": "2020-09-02T11:52:57", "edition": 40, "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2003-0197"]}, {"type": "osvdb", "idList": ["OSVDB:10831"]}], "modified": "2020-09-02T11:52:57", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2020-09-02T11:52:57", "rev": 2}, "vulnersScore": 6.4}, "scheme": null}

{"cve": [{"lastseen": "2020-10-03T11:33:02", "description": "Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK).", "edition": 3, "cvss3": {}, "published": "2003-04-11T04:00:00", "title": "CVE-2003-0197", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 3.9, "obtainAllPrivilege": true, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 7.2, "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "LOCAL", "authentication": "NONE"}, "impactScore": 10.0, "obtainUserPrivilege": false}, "cvelist": ["CVE-2003-0197"], "modified": "2016-10-18T02:30:00", "cpe": ["cpe:/a:borland_software:interbase:6.5", "cpe:/a:borland_software:interbase:6.4", "cpe:/a:borland_software:interbase:6.0", "cpe:/a:firebirdsql:firebird:1.0.2"], "id": "CVE-2003-0197", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0197", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}, "cpe23": ["cpe:2.3:a:borland_software:interbase:6.5:*:*:*:*:*:*:*", "cpe:2.3:a:firebirdsql:firebird:1.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:borland_software:interbase:6.0:*:*:*:*:*:*:*", "cpe:2.3:a:borland_software:interbase:6.4:*:*:*:*:*:*:*"]}], "osvdb": [{"lastseen": "2017-04-28T13:20:06", "bulletinFamily": "software", "cvelist": ["CVE-2003-0197"], "edition": 1, "description": "# No description provided by the source\n\n## References:\nMail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=104940730819887&w=2\n[CVE-2003-0197](https://vulners.com/cve/CVE-2003-0197)\n", "modified": "2003-04-03T09:43:57", "published": "2003-04-03T09:43:57", "href": "https://vulners.com/osvdb/OSVDB:10831", "id": "OSVDB:10831", "type": "osvdb", "title": "Borland Interbase gds_lock_mgr ISC_LOCK_ENV Variable Overflow", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}