CVE-2007-5243
CVE-2007-5243
Multiple stack-based buffer overflows in Borland InterBase LI 8.0.0.53 through 8.1.0.253, and WI 5.1.1.680 through 8.1.0.257, allow remote attackers to execute arbitrary code via (1) a long service attach request on TCP port 3050 to the (a) SVC_attach or (b) INET_connect function, (2) a long create request on TCP port 3050 to the (c) isc_create_database or (d) jrd8_create_database function, (3) a long attach request on TCP port 3050 to the (e) isc_attach_database or (f) PWD_db_aliased function, or unspecified vectors involving the (4) jrd8_attach_database or (5) expand_filename2 function.
Affected products
n/a · n/apublic PoCs found — 12
exploitdbwww.exploit-db.com/exploits/16844unverifiedexploitdbwww.exploit-db.com/exploits/16843unverifiedexploitdbwww.exploit-db.com/exploits/16839unverifiedexploitdbwww.exploit-db.com/exploits/9954unverifiedexploitdbwww.exploit-db.com/exploits/10021unverifiedexploitdbwww.exploit-db.com/exploits/10020unverifiedexploitdbwww.exploit-db.com/exploits/16447unverifiedexploitdbwww.exploit-db.com/exploits/16437unverifiedexploitdbwww.exploit-db.com/exploits/16449unverifiedexploitdbwww.exploit-db.com/exploits/16440unverifiedexploitdbwww.exploit-db.com/exploits/16432unverifiedexploitdbwww.exploit-db.com/exploits/16420unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osvdb.org/38605http://osvdb.org/38606http://osvdb.org/38607http://osvdb.org/38608http://osvdb.org/38609http://risesecurity.org/advisory/RISE-2007002/http://risesecurity.org/blog/entry/3/http://risesecurity.org/exploit/10/http://risesecurity.org/exploit/12/http://risesecurity.org/exploit/13/http://risesecurity.org/exploit/14/http://risesecurity.org/exploit/15/