TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
725
marketed by CodeGear, a wholly-owned subsidiary of Borland Software Corporation. Firebird is a relational database
that runs on Linux, Windows, and a variety of Unix platforms. Borland InterBase LI 8.0.0.53 through 8.1.0.253 on
Linux and Firebird Versions 2.0.0.12748, 2.0.1.12855 on Linux and Windows are vulnerable to stack-based overflow
caused by improper bounds checking in multiple functions. This rule triggers when a malicious "Service_Attach"
request is found. By sending a specially-crafted 'Service_Attach' request to TCP port 3050, a remote attacker could
overflow a buffer and execute arbitrary code on the system. Upgrade to latest version of the software or install the
updates provided by the software vendor which are available from vendor's website.
Signature ID: 30470
Borland InterBase/Firebird Database Multiple Functions Stack Overflow Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-3566 CVE-2007-5243 CVE-2007-5244 CVE-2007-5245 CVE-2007-5246 Bugtraq:
25048,25917,25925
Signature Description: InterBase is a relational database management system (RDBMS) currently developed and
marketed by CodeGear, a wholly-owned subsidiary of Borland Software Corporation. Firebird is a relational database
that runs on Linux, Windows, and a variety of Unix platforms. Borland InterBase LI 8.0.0.53 through 8.1.0.253 on
Linux and Firebird Versions 2.0.0.12748, 2.0.1.12855 on Linux and Windows are vulnerable to stack-based overflow
caused by improper bounds checking in multiple functions. This rule triggers when a malicious 'Create' request is
found. By sending a specially-crafted 'Create' request to TCP port 3050, a remote attacker could overflow a buffer and
execute arbitrary code on the system. Upgrade to latest version of the software or install the updates provided by the
software vendor which are available from vendor's website.
Signature ID: 30471
Borland InterBase/Firebird Database Multiple Functions Stack Overflow Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-3566 CVE-2007-5243 CVE-2007-5244 CVE-2007-5245 CVE-2007-5246 Bugtraq:
25048,25917,25925
Signature Description: InterBase is a relational database management system (RDBMS) currently developed and
marketed by CodeGear, a wholly-owned subsidiary of Borland Software Corporation. Firebird is a relational database
that runs on Linux, Windows, and a variety of Unix platforms. Borland InterBase LI 8.0.0.53 through 8.1.0.253 on
Linux and Firebird Versions 2.0.0.12748, 2.0.1.12855 on Linux and Windows are vulnerable to stack-based overflow
caused by improper bounds checking in multiple functions. This rule triggers when a malicious "Service_pwd" request
is found. By sending a specially-crafted 'Service_pwd' request to TCP port 3050, a remote attacker could overflow a
buffer and execute arbitrary code on the system. Upgrade to latest version of the software or install the updates
provided by the software vendor which are available from vendor's website.
Signature ID: 30472
Borland InterBase/Firebird Database Multiple Functions Stack Overflow Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-3566 CVE-2007-5243 CVE-2007-5244 CVE-2007-5245 CVE-2007-5246 Bugtraq:
25048,25917,25925
Signature Description: InterBase is a relational database management system (RDBMS) currently developed and
marketed by CodeGear, a wholly-owned subsidiary of Borland Software Corporation. Firebird is a relational database
that runs on Linux, Windows, and a variety of Unix platforms. Borland InterBase LI 8.0.0.53 through 8.1.0.253 on
Linux and Firebird Versions 2.0.0.12748, 2.0.1.12855 on Linux and Windows are vulnerable to stack-based overflow
caused by improper bounds checking in multiple functions. By sending a specially-crafted Service request to TCP port
3050, a remote attacker could overflow a buffer and execute arbitrary code on the system. Upgrade to latest version of
the software or install the updates provided by the software vendor which are available from vendor's website.