Vulnerabilities > CVE-2002-1514 - Unspecified vulnerability in Borland Software Interbase

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

borland-software

exploit available

NVD

Published: 2003-04-02

Updated: 2008-09-05

Summary

gds_lock_mgr in Borland InterBase allows local users to overwrite files and gain privileges via a symlink attack on a "isc_init1.X" temporary file, as demonstrated by modifying the xinetdbd file.

Vulnerable Configurations

Part	Description	Count
Application	Borland_Software Borland Software Interbase 4.0 Borland Software Interbase 5.0 Borland Software Interbase 6.0 Borland Software Interbase 6.5	4

Exploit-Db

description	Interbase 5/6 GDS_Lock_MGR UMask File Permission Changing Vulnerability. CVE-2002-1514. Local exploit for linux platform
id	EDB-ID:21865
last seen	2016-02-02
modified	2002-09-25
published	2002-09-25
reporter	grazer
source	https://www.exploit-db.com/download/21865/
title	Interbase 5/6 GDS_Lock_MGR UMask File Permission Changing Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References