Vulnerability Details : CVE-2006-6201
Heap-based buffer overflow in Borland idsql32.dll 5.1.0.4, as used by RevilloC MailServer; 5.2.0.2 as used by Borland Developer Studio 2006; and possibly other versions allows remote attackers to execute arbitrary code via a long SQL statement, related to use of the DbiQExec function.
Vulnerability category: OverflowExecute code
Products affected by CVE-2006-6201
- cpe:2.3:a:borland_software:c\+\+_builder:2006:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:c\+\+_builder:5.x:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:c\+\+_builder:6.x:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:c_builder:2006:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:delphi:6.x:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:delphi:7.x:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:delphi:2006:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:delphi:5.x:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:developer_studio:2006:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:idsql32.dll:5.1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:borland_software:idsql32.dll:5.1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:revilloc:mailserver:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-6201
19.67%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-6201
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2006-6201
Jump to