CVE-2006-6201

Heap-based buffer overflow in Borland idsql32.dll 5.1.0.4, as used by RevilloC MailServer; 5.2.0.2 as used by Borland Developer Studio 2006; and possibly other versions allows remote attackers to execute arbitrary code via a long SQL statement, related to use of the DbiQExec function.

Published: Dec 1, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-6201
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
revilloc / mailserver	-	-
borland_software / c++_builder	6.x	6.x.x
borland_software / idsql32.dll	5.1.0.4	5.1.0.4.x
borland_software / developer_studio	2006	2006.x
borland_software / delphi	5.x	5.x.x
borland_software / idsql32.dll	5.1.0.2	5.1.0.2.x
borland_software / c++_builder	5.x	5.x.x
borland_software / c_builder	2006	2006.x
borland_software / delphi	6.x	6.x.x
borland_software / delphi	7.x	7.x.x
borland_software / c++_builder	2006	2006.x
borland_software / delphi	2006	2006.x

Vulnerability Database

CVE-2006-6201