CVSS: 10.0EPSS: 21%CPEs: 1EXPL: 1CVE-2008-1910 – Borland Interbase 2007 - 'ibserver.exe' Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2008-1910
21 Apr 2008 — Stack-based buffer overflow in the database service (ibserver.exe) in Borland InterBase 2007 SP2 allows remote attackers to execute arbitrary code via a malformed opcode 0x52 request to TCP port 3050. NOTE: this might overlap CVE-2007-5243 or CVE-2007-5244. Desbordamiento de búfer basado en pila en el servicio de base de datos (ibserver.exe) de Borland InterBase 2007 SP2 permite a atacantes remotos ejecutar código de su elección a través de una petición opcode 0x52 malformada del puerto TCP 3050. NOTA: esto... • https://www.exploit-db.com/exploits/5427 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 54%CPEs: 3EXPL: 6CVE-2007-5244 – Borland Interbase 2007/2007 SP2 - 'open_marker_file' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-5244
06 Oct 2007 — Stack-based buffer overflow in Borland InterBase LI 8.0.0.53 through 8.1.0.253 on Linux, and possibly unspecified versions on Solaris, allows remote attackers to execute arbitrary code via a long attach request on TCP port 3050 to the open_marker_file function. Desbordamiento de búfer basado en pila en Borland InterBase LI 8.0.0.53 hasta la 8.1.0.253 sobre Linux, y posiblemente en versiones no especificadas sobre Solaris, permite a atacantes remotos ejecutar código de su elección a través de una respuesta a... • https://www.exploit-db.com/exploits/10019 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 41%CPEs: 17EXPL: 16CVE-2007-5243 – Borland Interbase - 'jrd8_create_database()' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-5243
06 Oct 2007 — Multiple stack-based buffer overflows in Borland InterBase LI 8.0.0.53 through 8.1.0.253, and WI 5.1.1.680 through 8.1.0.257, allow remote attackers to execute arbitrary code via (1) a long service attach request on TCP port 3050 to the (a) SVC_attach or (b) INET_connect function, (2) a long create request on TCP port 3050 to the (c) isc_create_database or (d) jrd8_create_database function, (3) a long attach request on TCP port 3050 to the (e) isc_attach_database or (f) PWD_db_aliased function, or unspecifi... • https://www.exploit-db.com/exploits/16843 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 94%CPEs: 1EXPL: 1CVE-2007-3566 – Borland Interbase - 'Create-Request' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-3566
26 Jul 2007 — Stack-based buffer overflow in the database service (ibserver.exe) in Borland InterBase 2007 before SP2 allows remote attackers to execute arbitrary code via a long size value in a create request to port 3050/tcp. Desbordamiento de búfer basado en pila en el servicio de base de datos (ibserver.exe) del Borland InterBase 2007 anterior al SP2 permite a atacantes remotos ejecutar código de su elección a través de un valor de tamaño grande en una petición "create" al puerto 3050/tcp. • https://www.exploit-db.com/exploits/16453 •
CVSS: 7.5EPSS: 5%CPEs: 9EXPL: 4CVE-2004-2043 – Borland Interbase 7.x - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2004-2043
01 May 2004 — Buffer overflow in ibserver for Firebird Database 1.0 and other versions before 1.5, and possibly other products that use the InterBase codebase, allows remote attackers to cause a denial of service (crash) via a long database name, as demonstrated using the gsec command. • https://www.exploit-db.com/exploits/303 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 2CVE-2004-1833
https://notcve.org/view.php?id=CVE-2004-1833
20 Mar 2004 — The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to gain database administrative privileges. • http://secunia.com/advisories/11172 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2003-0197
https://notcve.org/view.php?id=CVE-2003-0197
08 Apr 2003 — Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK). Desbordamiento de búfer gds_lock_mgr de Interbase Database 6.x permite a usuarios locales la obtención de privilegios mediante una variable de entorno ISC_LOCK_ENV larga. (INTERBASE_LOCK). • http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0003.html •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 3CVE-2002-1514 – Interbase 5/6 - GDS_Lock_MGR UMask File Permission Changing
https://notcve.org/view.php?id=CVE-2002-1514
02 Apr 2003 — gds_lock_mgr in Borland InterBase allows local users to overwrite files and gain privileges via a symlink attack on a "isc_init1.X" temporary file, as demonstrated by modifying the xinetdbd file. • https://www.exploit-db.com/exploits/21865 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 7CVE-2002-2087 – Firebird 1.0.2 (FreeBSD 4.7-RELEASE) - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2002-2087
31 Dec 2002 — Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop, (2) gds_lock_mgr, or (3) gds_inet_server. • https://www.exploit-db.com/exploits/29 •
CVSS: 10.0EPSS: 3%CPEs: 4EXPL: 2CVE-2001-0008 – Borland/Inprise Interbase 4.0/5.0/6.0 - Backdoor Password
https://notcve.org/view.php?id=CVE-2001-0008
12 Feb 2001 — Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures. • https://www.exploit-db.com/exploits/20537 •