247 matches found
ZDI-11-153: Embarcadero Interbase connect Request Parsing Remote Code Execution Vulnerability
ZDI-11-153: Embarcadero Interbase connect Request Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-153 April 29, 2011 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Embarcadero -- Affected Products: Embarcadero Interbase -- TippingPointT...
Embarcadero Interbase buffer overflow
Stack buffer overflow on connect request processing...
Embarcadero Interbase connect Request Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Borland Interbase. Authentication is not required to exploit these vulnerabilities. The specific flaws exists within the database service, ibserver.exe, which binds to TCP port 3050. When a special...
PHP-Nuke Search模块SQL注入漏洞
BUGTRAQ ID: 45165 PHP-Nuke是一个广为流行的网站创建和管理工具,可使用很多数据库软件作为后端,如MySQL、PostgreSQL、mSQL、Interbase、Sybase等。 PHP-Nuke的Search模块在实现上存在SQL注入漏洞,攻击者可利用此漏洞控制应用程序,访问或修改数据,利用后台数据库中的潜在漏洞。 此漏洞源于在SQL查询中使用用户提供的数据之前未进行有效过滤。 PHP-Nuke 7.0 - 8.1.0.3.5b 厂商补丁: PHP-Nuke --------...
Borland InterBase Database Message Handling Buffer Overflow
InterBase is a SQL-92 compliant relational database management system developed by Borland Software Corporation. It supports standard interfaces such as JDBC, ODBC, and ADO.NET. The InterBase database system runs on Linux, Microsoft Windows, and Solaris operating systems. There exists a buffer...
Firebird Relational Database - 'isc_create_database()' Remote Buffer Overflow (Metasploit)
$Id: fbisccreatedatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Firebird Relational Database - 'SVC_attach()' Remote Buffer Overflow (Metasploit)
$Id: fbsvcattach.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Borland Interbase - 'PWD_db_aliased()' Remote Buffer Overflow (Metasploit)
$Id: ibpwddbaliased.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
Firebird Relational Database - 'isc_attach_database()' Remote Buffer Overflow (Metasploit)
$Id: fbiscattachdatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Borland Interbase - 'open_marker_file()' Remote Buffer Overflow (Metasploit)
$Id: ibopenmarkerfile.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Borland Interbase - 'SVC_attach()' Remote Buffer Overflow (Metasploit)
$Id: ibsvcattach.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Borland Interbase - 'isc_attach_database()' Remote Buffer Overflow (Metasploit)
$Id: ibiscattachdatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Borland Interbase - 'jrd8_create_database()' Remote Buffer Overflow (Metasploit)
$Id: ibjrd8createdatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Borland Interbase - 'isc_create_database()' Remote Buffer Overflow (Metasploit)
$Id: ibisccreatedatabase.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Borland Interbase - 'INET_connect()' Remote Buffer Overflow (Metasploit)
$Id: ibinetconnect.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Borland Interbase - 'Create-Request' Remote Buffer Overflow (Metasploit)
$Id: borlandinterbase.rb 9525 2010-06-15 07:18:08Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2010-0391
Multiple stack-based buffer overflows in Embarcadero Technologies InterBase SMP 2009 9.0.3.437 allow remote attackers to execute arbitrary code via unknown vectors involving crafted packets. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
Stack overflow
Multiple stack-based buffer overflows in Embarcadero Technologies InterBase SMP 2009 9.0.3.437 allow remote attackers to execute arbitrary code via unknown vectors involving crafted packets. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2010-0391
Multiple stack-based buffer overflows in Embarcadero Technologies InterBase SMP 2009 9.0.3.437 allow remote attackers to execute arbitrary code via unknown vectors involving crafted packets. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2010-0391
CVE-2010-0391 involves multiple stack-based buffer overflows in Embarcadero Technologies InterBase SMP 2009 9.0.3.437. The root cause is stack overflow conditions triggered by crafted packets, enabling remote attackers to execute arbitrary code. No remediation details are provided in the supplied...