Borland InterBase Multiple Remote Buffer Overflow Vulnerabilities

Bugtraq ID:	25917
Class:	Boundary Condition Error
CVE:	CVE-2007-5243
Remote:	Yes
Local:	No
Published:	Oct 03 2007 12:00AM
Updated:	May 07 2015 05:35PM
Credit:	Adriano Lima <[email protected]> and Ramon de Carvalho Valle <[email protected]> of RISE Security discovered these issues.
Vulnerable:	Gentoo Linux Borland/Inprise Interbase 2007 SP2 Borland/Inprise Interbase 2007
Not Vulnerable:

Borland InterBase Multiple Remote Buffer Overflow Vulnerabilities

Borland InterBase is prone to multiple remote buffer-overflow vulnerabilities because the application fails to bounds-check user-supplied input before copying it into an insufficiently sized memory buffer.

Successfully exploiting these issues allows remote attackers to execute arbitrary machine code with SYSTEM-Level privileges. This will result in a complete compromise of affected computers.

Borland InterBase 2007 for Linux and Windows is considered vulnerable.

Borland InterBase Multiple Remote Buffer Overflow Vulnerabilities

The following Metasploit exploit modules are available:

• /data/vulnerabilities/exploits/ib_inet_connect.rb
• /data/vulnerabilities/exploits/ib_jrd8_create_database.rb
• /data/vulnerabilities/exploits/ib_open_marker_file.rb
• /data/vulnerabilities/exploits/ib_pwd_db_aliased.rb
• /data/vulnerabilities/exploits/ib_isc_attach_database.rb
• /data/vulnerabilities/exploits/ib_isc_create_database.rb
• /data/vulnerabilities/exploits/ib_svc_attach.rb

Borland InterBase Multiple Remote Buffer Overflow Vulnerabilities

Solution:
Advisories and fixes that address these issues are available. Please see the references for more information.

Borland InterBase Multiple Remote Buffer Overflow Vulnerabilities

References:

• Borland InterBase Multiple Buffer Overflow Vulnerabilities (RISE Security)
  
• Interbase Homepage (Borland/Inprise)
  
• [RISE-2007002] Borland InterBase Multiple Buffer Overflow Vulnerabilities (RISE Security)