Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1514

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-1514
Last Modified 05 Sep 2008 04:30:48
Published 02 Apr 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1514

Summary

gds_lock_mgr in Borland InterBase allows local users to overwrite files and gain privileges via a symlink attack on a "isc_init1.X" temporary file, as demonstrated by modifying the xinetdbd file.

Vulnerable Systems

Application

  • Borland Software Interbase 4.0

  • Borland Software Interbase 5.0

  • Borland Software Interbase 6.0

  • Borland Software Interbase 6.5


References

BID - 5805

XF - interbase-gdslockmgr-bo(10196)

BUGTRAQ - 20020925 Borland Interbase local root exploit


Last Updated: 27 May 2016 10:37:22