Check Point Advisories

Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows

Check Point Reference: CPAI-2012-022
Date Published: 17 Jan 2012
Severity: High
Last Updated:
Source:
Protection Provided by:

Security Gateway
R75

Who is Vulnerable? Embarcadero InterBase prior to XE 32-bit Update 2 (10.0.2.474) for Windows
Embarcadero InterBase prior to XE 64-bit Update 2 (10.0.2.474) for Windows
Embarcadero InterBase prior to XE Update 2 (10.0.2.467) for Linux
Vulnerability Description Multiple remote code execution vulnerabilities have been reported in Embarcadero InterBase.
Vulnerability DetailsThe vulnerabilities are due to insufficient validation of client requests. A remote attacker may exploit this vulnerabilities by sending a specially crafted request to the target host. Successful exploitation could allow attackers to execute arbitrary codes in the context of the affected application.

Protection Overview

IPS will detect and block the transferring of malicious client requests.

In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.

Security Gateway R75 / R71 / R70

1. In the IPS tab, click Protections and find the Embarcadero InterBase Connect Request Multiple Stack Buffer Overflows protection using the Search tool and Edit the protection's settings.
2. Install policy on all modules.

SmartView Tracker will log the following entries:
Attack Name: Database Protection Violation
Attack Information: Embarcadero InterBase connect request multiple stack buffer overflows

This website uses cookies to ensure you get the best experience. Got it, Thanks! MORE INFO