Vulnerability Description
Integer overflow in Borland Interbase 2007 SP2 (8.1.0.256) allows remote attackers to execute arbitrary code via a malformed packet to TCP port 3050, which triggers a stack-based buffer overflow. NOTE: this issue might be related to CVE-2008-0467.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Damian Frizza | Borland Interbase | 2007 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/30299Vendor Advisory
- http://securitytracker.com/id?1020092
- http://www.coresecurity.com/?action=item&id=2278Exploit
- http://www.securityfocus.com/bid/29302
- http://www.vupen.com/english/advisories/2008/1590
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42558
- http://secunia.com/advisories/30299Vendor Advisory
- http://securitytracker.com/id?1020092
- http://www.coresecurity.com/?action=item&id=2278Exploit
- http://www.securityfocus.com/bid/29302
- http://www.vupen.com/english/advisories/2008/1590
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42558
FAQ
What is CVE-2008-2559?
CVE-2008-2559 is a vulnerability with a CVSS score of 7.5 (HIGH). Integer overflow in Borland Interbase 2007 SP2 (8.1.0.256) allows remote attackers to execute arbitrary code via a malformed packet to TCP port 3050, which triggers a stack-based buffer overflow. NOT...
How severe is CVE-2008-2559?
CVE-2008-2559 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-2559?
Check the references section above for vendor advisories and patch information. Affected products include: Damian Frizza Borland Interbase.