CVE-2002-2087 Information

Description

Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop (2) gds_lock_mgr or (3) gds_inet_server.

Reference

http://cert.uni-stuttgart.de/archive/bugtraq/2002/06/msg00222.html http://www.iss.net/security_center/static/9392.php http://www.securityfocus.com/bid/5044 http://www.securityfocus.com/bid/5046