Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:F0DFA44E1055365BFB65E4EF010F5741
HistoryJul 26, 2007 - 12:00 a.m.

Borland Interbase ibserver.exe create buffer overflow

2007-07-2600:00:00
SAINT Corporation
www.saintcorporation.com
9

0.859 High

EPSS

Percentile

98.2%

JSON

Added: 07/26/2007
CVE: CVE-2007-3566
BID: 25048
OSVDB: 38602

Background

Borland Interbase is a database solution for Windows, Linux, and Solaris platforms.

Problem

A buffer overflow in the database service, **ibserver.exe**, allows remote attackers to execute arbitrary commands by sending a specially crafted create request to port 3050/TCP.

Resolution

Apply Interbase 2007 Service Pack 2.

References

<http://www.securityfocus.com/archive/1/474561&gt;

Limitations

Exploit works on Borland Interbase 2007 SP1 V8.0.0.123 on Windows and Borland Interbase 2007 V8.0.0.97 on Red Hat Enterprise Linux 4 Update 1.

When target platform is Linux with Exec-Shield, the target must have the following utilities installed: nc, nc6 (if using IPv6), mkfifo, sh.

Platforms

Windows 2000
Windows Server 2003
Linux without Exec-Shield
Linux

Related

checkpoint_advisories 1
packetstorm 2
canvas 1
saint 3
cve 1
securityvulns 2
prion 1
cvelist 1
checkpoint_advisories
checkpoint_advisories
Borland Interbase Database Service Create-Request Buffer Overflow (CVE-2007-3566)
2007-10-18 00:00:00
packetstorm
packetstorm
Borland Interbase Create-Request Buffer Overflow
2009-11-26 00:00:00
interbase_create.rb.txt
2007-08-08 00:00:00
canvas
canvas
Immunity Canvas: BORLAND_IB
2007-07-26 18:30:00
saint
saint
Borland Interbase ibserver.exe create buffer overflow
2007-07-26 00:00:00
Borland Interbase ibserver.exe create buffer overflow
2007-07-26 00:00:00
Borland Interbase ibserver.exe create buffer overflow
2007-07-26 00:00:00
cve
cve
CVE-2007-3566
2007-07-26 18:30:00
securityvulns
securityvulns
Borland Interbase database server buffer overflow
2007-07-25 00:00:00
TPTI-07-13: Borland Interbase ibserver.exe Create-Request Buffer Overflow Vulnerability
2007-07-25 00:00:00
prion
prion
Stack overflow
2007-07-26 18:30:00
cvelist
cvelist
CVE-2007-3566
2007-07-26 18:00:00

0.859 High

EPSS

Percentile

98.2%

JSON
Related for SAINT:F0DFA44E1055365BFB65E4EF010F5741
checkpoint_advisories1packetstorm2canvas1saint3cve1securityvulns2prion1cvelist1