Borland Software » C++ Builder : Security Vulnerabilities, CVEs, CVSS score >= 4
Heap-based buffer overflow in Borland idsql32.dll 5.1.0.4, as used by RevilloC MailServer; 5.2.0.2 as used by Borland Developer Studio 2006; and possibly other versions allows remote attackers to execute arbitrary code via a long SQL statement, related to use of the DbiQExec function.
Max CVSS
7.5
EPSS Score
15.74%
Published
2006-12-01
Updated
2018-10-17
Borland C++Builder 6 (BCB6) with Update Pack 4 Enterprise edition (ent_upd4) evaluates the "i>sizeof(int)" expression to false when i equals -1, which might introduce integer overflow vulnerabilities into applications that could be exploited by context-dependent attackers.
Max CVSS
4.6
EPSS Score
0.07%
Published
2006-02-10
Updated
2018-10-19
2 vulnerabilities found