Description
The admin.ib file in Borland Interbase 7.1 for Linux has default world writable permissions, which allows local users to gain database administrative privileges.
Affected products
- borland_software / interbase4.0 – 4.0
- borland_software / interbase5.0 – 5.0
- borland_software / interbase6.0 – 6.0
- borland_software / interbase6.4 – 6.4
- borland_software / interbase6.5 – 6.5
- borland_software / interbase7.0 – 7.0
- borland_software / interbase7.1 – 7.1
References
- MISChttp://www.osvdb.org/4381
- MISChttp://securitytracker.com/id?1009500
- MISChttp://www.securityfocus.com/bid/9929
- MISChttp://www.idefense.com/application/poi/display?id=80&type=vulnerabilities&flashstatus=true
- VENDOR_ADVISORYhttp://secunia.com/advisories/11172
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/15546