Vulnerability Note VU#247371
Borland/Inprise Interbase SQL database server contains backdoor superuser account with known password
Interbase is an open source database package that is distributed by Borland/Inprise. The server contains a compiled-in backdoor account with a known password.
In the following interbase code, references are made about a LOCKSMITH user:
This backdoor allows any local user or remote user able to access port 3050/tcp [gds_db] to manipulate any database object on the system. This includes the ability to install trapdoors or other trojan horse software in the form of stored procedures. In addition, if the database software is running with root (*NIX) or System (NT) privileges, then any file on the server's file system can be overwritten, possibly leading to execution of arbitrary commands as root or System.
Install the patch being distributed to change the backdoor server account password.
Block access to port 3050/tcp; this will not, however, prevent local users or users within a firewall's adminstrative boundary from accessing the backdoor account.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Borland||Affected||23 Dec 2000||11 Jan 2001|
|IBPhoenix||Affected||26 Dec 2001||10 Jan 2001|
|Apple||Not Affected||09 Jan 2001||10 Jan 2001|
|Fujitsu||Not Affected||09 Jan 2001||10 Jan 2001|
CVSS Metrics (Learn More)
- http://sourceforge.net/cvs/?group_id=1962 [Borland Interbase]
- http://sourceforge.net/cvs/?group_id=9052 [FirebirdAshes]
This document was written by Jeffrey S Havrilla.
- CVE IDs: CAN-2001-0008
- CERT Advisory: CA-2001-01
- Date Public: 09 Jan 2001
- Date First Published: 10 Jan 2001
- Date Last Updated: 11 Jan 2001
- Severity Metric: 10.94
- Document Revision: 46
If you have feedback, comments, or additional information about this vulnerability, please send us email.