Lucene search

K
saintSAINT CorporationSAINT:2D8C7C2ECFD8A735A024F3CC3488FEDD
HistoryJul 26, 2007 - 12:00 a.m.

Borland Interbase ibserver.exe create buffer overflow

2007-07-2600:00:00
SAINT Corporation
my.saintcorporation.com
13

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.862 High

EPSS

Percentile

98.6%

Added: 07/26/2007
CVE: CVE-2007-3566
BID: 25048
OSVDB: 38602

Background

Borland Interbase is a database solution for Windows, Linux, and Solaris platforms.

Problem

A buffer overflow in the database service, **ibserver.exe**, allows remote attackers to execute arbitrary commands by sending a specially crafted create request to port 3050/TCP.

Resolution

Apply Interbase 2007 Service Pack 2.

References

<http://www.securityfocus.com/archive/1/474561&gt;

Limitations

Exploit works on Borland Interbase 2007 SP1 V8.0.0.123 on Windows and Borland Interbase 2007 V8.0.0.97 on Red Hat Enterprise Linux 4 Update 1.

When target platform is Linux with Exec-Shield, the target must have the following utilities installed: nc, nc6 (if using IPv6), mkfifo, sh.

Platforms

Windows 2000
Windows Server 2003
Linux without Exec-Shield
Linux

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.862 High

EPSS

Percentile

98.6%