Borland Interbase ibserver.exe create buffer overflow

Added: 07/26/2007
CVE: CVE-2007-3566
BID: 25048
OSVDB: 38602

Background

Borland Interbase is a database solution for Windows, Linux, and Solaris platforms.

Problem

A buffer overflow in the database service, ibserver.exe, allows remote attackers to execute arbitrary commands by sending a specially crafted create request to port 3050/TCP.

Resolution

Apply Interbase 2007 Service Pack 2.

References

http://www.securityfocus.com/archive/1/474561

Limitations

Exploit works on Borland Interbase 2007 SP1 V8.0.0.123 on Windows and Borland Interbase 2007 V8.0.0.97 on Red Hat Enterprise Linux 4 Update 1.

When target platform is Linux with Exec-Shield, the target must have the following utilities installed: nc, nc6 (if using IPv6), mkfifo, sh.

Platforms

Windows 2000
Windows Server 2003
Linux without Exec-Shield
Linux

Back to exploit index