CVSS: 10.0EPSS: 16%CPEs: 1EXPL: 1CVE-2008-1910 – Borland Interbase 2007 - 'ibserver.exe' Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2008-1910
Stack-based buffer overflow in the database service (ibserver.exe) in Borland InterBase 2007 SP2 allows remote attackers to execute arbitrary code via a malformed opcode 0x52 request to TCP port 3050. NOTE: this might overlap CVE-2007-5243 or CVE-2007-5244. Desbordamiento de búfer basado en pila en el servicio de base de datos (ibserver.exe) de Borland InterBase 2007 SP2 permite a atacantes remotos ejecutar código de su elección a través de una petición opcode 0x52 malformada del puerto TCP 3050. NOTA: esto puede solapar CVE-2007-5243 o CVE-2007-5244. • https://www.exploit-db.com/exploits/5427 http://www.securityfocus.com/archive/1/490752/100/0/threaded http://www.securityfocus.com/bid/28730 http://www.securitytracker.com/id?1019834 https://exchange.xforce.ibmcloud.com/vulnerabilities/41932 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 90%CPEs: 1EXPL: 1CVE-2007-3566 – Borland Interbase - 'Create-Request' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-3566
Stack-based buffer overflow in the database service (ibserver.exe) in Borland InterBase 2007 before SP2 allows remote attackers to execute arbitrary code via a long size value in a create request to port 3050/tcp. Desbordamiento de búfer basado en pila en el servicio de base de datos (ibserver.exe) del Borland InterBase 2007 anterior al SP2 permite a atacantes remotos ejecutar código de su elección a través de un valor de tamaño grande en una petición "create" al puerto 3050/tcp. • https://www.exploit-db.com/exploits/16453 http://dvlabs.tippingpoint.com/advisory/TPTI-07-13 http://dvlabs.tippingpoint.com/blog/2007/07/24/step-by-step-of-how-tpti-07-013-was-discovered http://osvdb.org/38602 http://secunia.com/advisories/26189 http://securityreason.com/securityalert/2929 http://www.codegear.com/downloads/regusers/interbase http://www.securityfocus.com/archive/1/474561/100/0/threaded http://www.securityfocus.com/bid/25048 http://www.securitytracker.com/id& •