PT-2007-2901 · Frontbase · Frontbase Relational Database Server

Publicado

2007-03-20

Atualizado

2018-10-16

CVE-2007-1511

CVSS v2.0

7.1

Alta

Vetor

AV:N/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions FrontBase Relational Database Server versions 4.2.7 and earlier

Description The issue allows remote authenticated users with privileges for creating a stored procedure to execute arbitrary code. This is achieved via a CREATE PROCEDURE request with a long procedure name, leading to a buffer overflow.

Recommendations For versions 4.2.7 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-1511

Produtos afetados

Frontbase Relational Database Server

PT-2007-2901 · Frontbase · Frontbase Relational Database Server

CVE-2007-1511

Identificadores relacionados

Produtos afetados

Referências · 9