CVE-2002-2087

Name of the Vulnerable Software and Affected Versions: Borland InterBase version 6.0

Description: A buffer overflow issue allows local users to execute arbitrary code via a long INTERBASE environment variable when calling certain functions, including gds drop, gds lock mgr, or gds inet server.

Recommendations: For Borland InterBase version 6.0, consider restricting access to the gds drop, gds lock mgr, and gds inet server functions until a patch is available. As a temporary workaround, avoid using long INTERBASE environment variables to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.