- Description
- gds_lock_mgr in Borland InterBase allows local users to overwrite files and gain privileges via a symlink attack on a "isc_init1.X" temporary file, as demonstrated by modifying the xinetdbd file.
- Source
- cve@mitre.org
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:borland_software:interbase:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E61E2866-38F1-45C0-8B5D-A07CA430BDDB"
},
{
"criteria": "cpe:2.3:a:borland_software:interbase:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0D2666FC-B03C-47A5-BA04-A08DC28C7C73"
},
{
"criteria": "cpe:2.3:a:borland_software:interbase:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5FE98699-E21E-4D1C-BD43-F7F62D9AE7BF"
},
{
"criteria": "cpe:2.3:a:borland_software:interbase:6.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9547CEC2-B180-4BFF-A5FF-DE8D2ABB8986"
}
],
"operator": "OR"
}
]
}
]