CVE-2003-0281
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2003-0281
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in Firebird 1.0.2 and other versions before 1.5, and possibly other products that use the InterBase codebase, allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_inet_server, (2) gds_lock_mgr, or (3) gds_drop.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Firebird GDS_Inet_Server Interbase环境变量本地缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Firebird是一款提供多个ANSI SQL-92功能的关系型数据库,可运行在Linux, Windows和各种Unix平台下。 Firebird包含的多个应用程序处理环境变量不正确,本地攻击者可以利用这个漏洞进行缓冲区溢出攻击,可以以高权限在系统上执行任意指令。 Firebird包含的gds_inet_server、gds_drop、gds_lock_mgr三个二进制程序都会调用getenv()函数获得INTERBASE环境变量,但是没有对环境变量值进行充分的缓冲区检查,攻击者提供超长字符串给环境变量
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2003-0281
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2003-0281
Please Login to view more intelligence information
Same Patch Batch · n/a · 2003-05-14 · 18 CVEs total
| CVE-2003-0282 | Info-ZIP UnZip编码字符敌对目标路径漏洞 | |
| CVE-2003-0290 | EType EServ资源耗竭远程拒绝服务攻击漏洞 | |
| CVE-2003-0289 | CDRTools CDRecord Devname格式字符串漏洞 | |
| CVE-2003-0288 | IP Messenger For Win Filename缓冲区溢出漏洞 | |
| CVE-2003-0287 | Movable Type Comment Form HTML代码注入漏洞 | |
| CVE-2003-0286 | Snitz Forums 2000 Register.ASP SQL注入漏洞 | |
| CVE-2003-0285 | AIX Sendmail Open Relay功能默认打开漏洞 | |
| CVE-2003-0284 | Adobe Acrobat文件写入漏洞 | |
| CVE-2003-0283 | Phorum消息表单字段HTML注入变量漏洞 | |
| CVE-2003-0217 | Neoteris Instant Virtual Extranet跨站脚本会话劫持漏洞 | |
| CVE-2003-0280 | Youngzsoft CMailServer MAIL FROM远程缓冲区溢出漏洞 | |
| CVE-2003-0279 | PHP-Nuke Web_Links模块远程SQL注入码漏洞 | |
| CVE-2003-0278 | Happymall E-Commerce Software Normal_HTML.CGI跨站脚本攻击漏洞 | |
| CVE-2003-0277 | Happymall E-Commerce Software Normal_HTML.CGI文件泄露漏洞 | |
| CVE-2003-0276 | Pi3Web畸形GET请求远程拒绝服务攻击漏洞 | |
| CVE-2003-0275 | YaBB SE SSI.php执行任意PHP代码漏洞 | |
| CVE-2003-0270 | Apple AirPort管理员密码加密漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM
V. Comments for CVE-2003-0281
No comments yet