CVE-2007-5929

Name of the Vulnerable Software and Affected Versions OpenBase versions 10.0.5 and earlier

Description The issue allows remote authenticated users to potentially execute arbitrary code or cause a denial of service, resulting in a daemon crash. This is achieved by creating a stored procedure with a long name and then invoking this procedure, which triggers heap corruption.

Recommendations For OpenBase versions 10.0.5 and earlier, consider restricting the creation of stored procedures with long names as a temporary workaround until a patch is available. Additionally, limit access to procedure invocation to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.