CVE-2002-2087

Borland InterBase 6.0 - Local Buffer Overflow via INTERBASE Environment Variable

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2002-2087. PoCs published by bob.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Firebird 1.0.0's setuid root programs (gds_inet_server, gds_lock_mgr, gds_drop) on FreeBSD 4.7. It leverages a crafted environment variable to overwrite stack memory and execute arbitrary shellcode for privilege escalation.

Description

Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop, (2) gds_lock_mgr, or (3) gds_inet_server.

Exploits (4)

exploitdb WORKING POC VERIFIED
by bob · clocalfreebsd
https://www.exploit-db.com/exploits/22580

This exploit targets a buffer overflow vulnerability in Firebird 1.0.0's setuid root programs (gds_inet_server, gds_lock_mgr, gds_drop) on FreeBSD 4.7. It leverages a crafted environment variable to overwrite stack memory and execute arbitrary shellcode for privilege escalation.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Firebird 1.0.0
No auth needed
Prerequisites: Local access to the target system · Firebird 1.0.0 installed with vulnerable setuid binaries
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
clocalunix
https://www.exploit-db.com/exploits/21566

This is a functional local exploit for CVE-2002-2087, targeting a buffer overflow in Interbase/Firebird's gds_drop, gds_lock_mgr, and gds_inet_server binaries. It leverages environment variable manipulation to overwrite stack memory and execute arbitrary shellcode.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Interbase/Firebird 1.0.2
No auth needed
Prerequisites: Local access to the target system · Presence of vulnerable Interbase/Firebird binaries
devstral-2 · analyzed Feb 19, 2026 Full analysis →
exploitdb WORKING POC
perllocalunix
https://www.exploit-db.com/exploits/21565

This Perl script exploits a buffer overflow in the gds_drop program of Interbase 6.0 Linux beta by manipulating environment variables to execute arbitrary code (spawning a shell). The exploit uses a NOP sled and shellcode to achieve local privilege escalation.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Interbase 6.0 Linux beta
No auth needed
Prerequisites: Local access to the target system · gds_drop binary present in /usr/local/interbase/bin/
devstral-2 · analyzed Feb 19, 2026 Full analysis →
exploitdb WORKING POC
clocalbsd
https://www.exploit-db.com/exploits/29

This is a functional local exploit for Firebird 1.0.2 on FreeBSD 4.7, leveraging a buffer overflow in the INTERBASE environment variable to execute arbitrary shellcode. It targets three different Firebird binaries (gds_inet_server, gds_lock_mgr, gds_drop) with distinct payloads for each.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Firebird 1.0.2 on FreeBSD 4.7
No auth needed
Prerequisites: Local access to a vulnerable FreeBSD 4.7 system with Firebird 1.0.2 installed
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://cert.uni-stuttgart.de/archive/bugtraq/2002/06/msg00222.html
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5046
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5044
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9392.php

Scores

EPSS 0.0122
EPSS Percentile 64.6%

Details

Status published
Products (1)
borland_software/interbase 6.0
Published Dec 31, 2002
Tracked Since Feb 18, 2026