Vulnerabilities > CVE-2006-6201 - Remote Heap Buffer Overflow vulnerability in Borland IDSQL32.DLL Library

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

borland-software

revilloc

NVD

Published: 2006-12-01

Updated: 2018-10-17

Summary

Heap-based buffer overflow in Borland idsql32.dll 5.1.0.4, as used by RevilloC MailServer; 5.2.0.2 as used by Borland Developer Studio 2006; and possibly other versions allows remote attackers to execute arbitrary code via a long SQL statement, related to use of the DbiQExec function.

Vulnerable Configurations

Part	Description	Count
Application	Borland_Software Borland Software C++ Builder 5.X Borland Software C++ Builder 6.X Borland Software C++ Builder 2006 Borland Software C Builder 2006 Borland Software Delphi 5.X Borland Software Delphi 6.X Borland Software Delphi 7.X Borland Software Delphi 2006 Borland Software Developer Studio 2006 Borland Software Idsql32.Dll 5.1.0.2 Borland Software Idsql32.Dll 5.1.0.4	11
Application	Revilloc Revilloc Mailserver *	1

Summary

Vulnerable Configurations

References