Borland Interbase 2007 / 2007 SP2 - 'INET_connect' Buffer Overflow (Metasploit)
CVE编号
CVE-2007-5243利用情况
暂无补丁情况
N/A披露时间
2007-10-07漏洞描述
Multiple stack-based buffer overflows in Borland InterBase LI 8.0.0.53 through 8.1.0.253, and WI 5.1.1.680 through 8.1.0.257, allow remote attackers to execute arbitrary code via (1) a long service attach request on TCP port 3050 to the (a) SVC_attach or (b) INET_connect function, (2) a long create request on TCP port 3050 to the (c) isc_create_database or (d) jrd8_create_database function, (3) a long attach request on TCP port 3050 to the (e) isc_attach_database or (f) PWD_db_aliased function, or unspecified vectors involving the (4) jrd8_attach_database or (5) expand_filename2 function.解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | li_8.0.0.253 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | li_8.0.0.53 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | li_8.0.0.54 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-o6.0.1.6 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-o6.0.2.0 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v5.1.1.680 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v5.5.0.742 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v6.0.0.627 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v6.0.1.0 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v6.0.1.6 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v6.5.0.28 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v7.0.1.1 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v7.5.0.129 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v7.5.1.80 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi-v8.0.0.123 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi_5.1.1.680 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | borland_software | interbase | wi_8.1.0.257 | - | |||||
- 攻击路径 网络
- 攻击复杂度 N/A
- 权限要求 无
- 影响范围 N/A
- 用户交互 无
- 可用性 完全地
- 保密性 完全地
- 完整性 完全地
| CWE-ID | 漏洞类型 |
| CWE-119 | 内存缓冲区边界内操作的限制不恰当 |
Exp相关链接
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/misc/ib_inet_connect.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/misc/ib_jrd8_create_database.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/misc/ib_pwd_db_aliased.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/fb_isc_attach_database.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/fb_isc_create_database.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/fb_svc_attach.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/ib_isc_attach_database.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/ib_isc_create_database.rb
- https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/misc/ib_svc_attach.rb
- https://www.exploit-db.com/exploits/10020
- https://www.exploit-db.com/exploits/10021
- https://www.exploit-db.com/exploits/16420
- https://www.exploit-db.com/exploits/16432
- https://www.exploit-db.com/exploits/16437
- https://www.exploit-db.com/exploits/16440
- https://www.exploit-db.com/exploits/16447
- https://www.exploit-db.com/exploits/16449
- https://www.exploit-db.com/exploits/16839
- https://www.exploit-db.com/exploits/16843
- https://www.exploit-db.com/exploits/16844
- https://www.exploit-db.com/exploits/9954
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论