Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0008Software Interbase vulnerability

4 documents4 sources
Severity
10.0CRITICALNVD
EPSS
20.2%
top 4.50%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Firebirdsql FirebirdBorland Software Interbase
Timeline
PublishedFeb 12
Latest updateApr 30

Description

Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDborland_software/interbase4.0, 5.0, 6.0+2

Patches

Patch: www.cert.orgPatch: www.securityfocus.comPatch: www.cert.org

🔴Vulnerability Details

2
GHSA
GHSA-mc6r-254j-5wx6: Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures2022-04-30
CVEList
CVE-2001-0008: Backdoor account in Interbase database server allows remote attackers to overwrite arbitrary files using stored procedures2001-05-07

💥Exploits & PoCs

1
Exploit-DB
Borland/Inprise Interbase 4.0/5.0/6.0 - Backdoor Password2001-01-10
CVE-2001-0008 — Software Interbase vulnerability | cvebase