Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0197

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2003-0197
Last Modified 10 Sep 2008 03:18:13
Published 11 Apr 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0197

Summary

Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK).

Vulnerable Systems

Application

  • Borland Software Interbase 6.0

  • Borland Software Interbase 6.4

  • Borland Software Interbase 6.5

  • Firebirdsql Firebird 1.0.2


References

MISC - http://www.secnetops.com/research/advisories/SRT2003-04-03-1300.txt

BUGTRAQ - 20030403 SRT2003-04-03-1300 - Interbase ISC_LOCK_ENV overflow


Last Updated: 27 May 2016 10:37:48