CVE-2002-2087

Description

Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop, (2) gds_lock_mgr, or (3) gds_inet_server.

Affected products

• borland_software / interbase6.0 – 6.0

References

• MISChttp://cert.uni-stuttgart.de/archive/bugtraq/2002/06/msg00222.html
• MISChttp://www.securityfocus.com/bid/5046
• MISChttp://www.securityfocus.com/bid/5044
• MISChttp://www.iss.net/security_center/static/9392.php