PT-2007-2901 · Frontbase · Frontbase Relational Database Server

Published

2007-03-20

Updated

2018-10-16

CVE-2007-1511

CVSS v2.0

7.1

High

Vector

AV:N/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions FrontBase Relational Database Server versions 4.2.7 and earlier

Description The issue allows remote authenticated users with privileges for creating a stored procedure to execute arbitrary code. This is achieved via a CREATE PROCEDURE request with a long procedure name, leading to a buffer overflow.

Recommendations For versions 4.2.7 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-1511

Affected Products

Frontbase Relational Database Server

PT-2007-2901 · Frontbase · Frontbase Relational Database Server

CVE-2007-1511

Related Identifiers

Affected Products

References · 9