Vulnerabilities > Borland Software > Interbase > 6.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-05-01 | CVE-2004-2043 | Remote Pre-Authentication Database Name Buffer Overrun vulnerability in Firebird Buffer overflow in ibserver for Firebird Database 1.0 and other versions before 1.5, and possibly other products that use the InterBase codebase, allows remote attackers to cause a denial of service (crash) via a long database name, as demonstrated using the gsec command. | 5.0 |
| 2004-03-20 | CVE-2004-1833 | Privilege Escalation vulnerability in Borland Interbase Database User The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to gain database administrative privileges. | 7.5 |
| 2003-04-11 | CVE-2003-0197 | Local Security vulnerability in Interbase Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK). | 7.2 |
| 2003-04-02 | CVE-2002-1514 | Unspecified vulnerability in Borland Software Interbase gds_lock_mgr in Borland InterBase allows local users to overwrite files and gain privileges via a symlink attack on a "isc_init1.X" temporary file, as demonstrated by modifying the xinetdbd file. | 7.2 |
| 2002-12-31 | CVE-2002-2087 | Buffer Overflow vulnerability in Borland Software Interbase 6.0 Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop, (2) gds_lock_mgr, or (3) gds_inet_server. | 4.6 |
| 2001-02-12 | CVE-2001-0008 | Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures. | 10.0 |