Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-5243

EPSS 82.95% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-5243

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple stack-based buffer overflows in Borland InterBase LI 8.0.0.53 through 8.1.0.253, and WI 5.1.1.680 through 8.1.0.257, allow remote attackers to execute arbitrary code via (1) a long service attach request on TCP port 3050 to the (a) SVC_attach or (b) INET_connect function, (2) a long create request on TCP port 3050 to the (c) isc_create_database or (d) jrd8_create_database function, (3) a long attach request on TCP port 3050 to the (e) isc_attach_database or (f) PWD_db_aliased function, or unspecified vectors involving the (4) jrd8_attach_database or (5) expand_filename2 function.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Borland InterBase和Firebird数据库多个远程栈缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Borland InterBase跨平台的高性能商业数据库。 Borland InterBase LI在处理用户数据时存在多个缓冲区溢出漏洞,远程攻击者可能利用这些漏洞控制服务器。 Borland InterBase的多个函数没有验证用户数据便将其拷贝到了栈缓冲区,如果远程攻击者在TCP 3050端口向SVC_attach或INET_connect函数发送了超长的service attach请求,或向isc_create_database或jrd8_create_database函数发送了超长的creat
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2007-5243

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2007-5243

登录查看更多情报信息。

Same Patch Batch · n/a · 2007-10-06 · 76 CVEs total

CVE-2004-2693HP-UX权限许可和访问控制漏洞
CVE-2007-5241HP OpenVMS 'NET$CSMACD.EXE' 缓冲区溢出漏洞
CVE-2007-5250Americasarmy America's Army Special Forces Unreal engine 拒绝服务漏洞
CVE-2007-5249Americasarmy America's Army Special Forces Unreal engine中的注册函数缓冲区溢出漏洞
CVE-2007-5248id Software Doom 3 Engine Punkbuster 多重格式字符串漏洞
CVE-2007-5247Monolith Productions First Encounter Assault Recon 格式化字符串漏洞
CVE-2007-5246Borland InterBase和Firebird数据库多个远程栈缓冲区溢出漏洞
CVE-2007-5245Borland Firebird数据库多个远程栈缓冲区溢出漏洞
CVE-2007-5244Borland InterBase数据库多个远程栈缓冲区溢出漏洞
CVE-2004-2694Microsoft Microsoft Outlook_Express权限许可和访问控制漏洞
CVE-2007-5251WebHost Automation Helm Web Hosting Control Panel 多个跨站请求伪造漏洞
CVE-2004-2692php-exec-dir补丁命令访问限制绕过漏洞
CVE-2004-2691带防火墙3Com SuperStack 3 4400 switches拒绝服务漏洞
CVE-2004-2690NewsPHP Administration Pane文件上传不受限漏洞
CVE-2004-2689NewsPHP权限许可和访问控制漏洞
CVE-2004-2688newsPHP跨站脚本漏洞
CVE-2005-4871IBM DB2 XML函数文件建立漏洞
CVE-2005-4870IBM DB2 XML函数远程缓冲区溢出漏洞
CVE-2005-4869IBM DB2 to_char和to_date函数本地拒绝服务漏洞
CVE-2005-4868IBM DB2 Universal Database信息泄露漏洞

Showing top 20 of 76 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2007-5243

No comments yet

Leave a comment