|Check Point Reference:||CPAI-2012-022|
|Date Published:||17 Jan 2012|
|Protection Provided by:||
|Who is Vulnerable?|| Embarcadero InterBase prior to XE 32-bit Update 2 (10.0.2.474) for Windows |
Embarcadero InterBase prior to XE 64-bit Update 2 (10.0.2.474) for Windows
Embarcadero InterBase prior to XE Update 2 (10.0.2.467) for Linux
|Vulnerability Description||Multiple remote code execution vulnerabilities have been reported in Embarcadero InterBase.|
|Vulnerability Details||The vulnerabilities are due to insufficient validation of client requests. A remote attacker may exploit this vulnerabilities by sending a specially crafted request to the target host. Successful exploitation could allow attackers to execute arbitrary codes in the context of the affected application.|
IPS will detect and block the transferring of malicious client requests.
In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.
1. In the IPS tab, click Protections and find the Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows protection using the Search tool and Edit the protection's settings. 2. Install policy on all modules.
SmartView Tracker will log the following entries:
Attack Name: Database Protection Violation
Attack Information: Embarcadero InterBase connect request multiple stack buffer overflows