AbdulAziz Hariri and Zein Fneish have discovered two vulnerabilities in InterBase SMP 2009, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerabilities are caused due to boundary errors when processing certain packets. This can be exploited to cause stack-based buffer overflows by sending specially crafted packets to an affected server (port 3050/TCP).
The vulnerabilities are confirmed in InterBase SMP 2009 version 220.127.116.117 running on a Windows system. Other versions may also be affected.
Solution: Restrict access to affected systems.
Provided and/or discovered by: AbdulAziz Hariri and Zein Fneish
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to email@example.com