| Vulnerability Name: | CVE-2003-0197 (CCN-11704) | ||||||||
| Assigned: | 2003-04-03 | ||||||||
| Published: | 2003-04-03 | ||||||||
| Updated: | 2016-10-18 | ||||||||
| Summary: | Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK). | ||||||||
| CVSS v3 Severity: | 9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||
| References: | Source: CCN Type: VulnWatch Mailing List, Thu Apr 03 2003 - 06:57:56 CST SRT2003-04-03-1300 - Interbase ISC_LOCK_ENV overflow Source: VULNWATCH Type: UNKNOWN 20030403 SRT2003-04-03-1300 - Interbase ISC_LOCK_ENV overflow Source: MITRE Type: CNA CVE-2003-0197 Source: BUGTRAQ Type: UNKNOWN 20030403 SRT2003-04-03-1300 - Interbase ISC_LOCK_ENV overflow Source: CCN Type: Borland Software Web site InterBase - Cross-platform Embedded Database Source: CCN Type: OSVDB ID: 10831 Borland Interbase gds_lock_mgr ISC_LOCK_ENV Variable Overflow Source: MISC Type: Exploit, Patch, Vendor Advisory http://www.secnetops.com/research/advisories/SRT2003-04-03-1300.txt Source: CCN Type: BID-7266 Interbase GDS_Lock_MGR Interbase_Lock Environment Variable Buffer Overflow Vulnerability Source: XF Type: UNKNOWN interbase-interbaselock-bo(11704) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||