CVE-2007-3566

Borland InterBase 2007 - Stack-Based Buffer Overflow via Create Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-3566. PoCs published by Metasploit, including Metasploit module exploits/windows/misc/borland_interbase.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in Borland Interbase 2007 via a maliciously crafted create-request packet, allowing remote code execution. The exploit targets Windows 2000 with a specific return address in sanctuarylib.dll.

Description

Stack-based buffer overflow in the database service (ibserver.exe) in Borland InterBase 2007 before SP2 allows remote attackers to execute arbitrary code via a long size value in a create request to port 3050/tcp.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16453

This Metasploit module exploits a stack buffer overflow in Borland Interbase 2007 via a maliciously crafted create-request packet, allowing remote code execution. The exploit targets Windows 2000 with a specific return address in sanctuarylib.dll.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Borland Interbase 2007
No auth needed
Prerequisites: Network access to target port 3050 · Target running Borland Interbase 2007 on Windows 2000
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/borland_interbase.rb

This Metasploit module exploits a stack buffer overflow in Borland Interbase 2007 via a crafted create-request packet, allowing remote code execution. The exploit targets a specific return address in sanctuarylib.dll and includes a payload encoder for alphanumeric shellcode.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Borland Interbase 2007
No auth needed
Prerequisites: Network access to target on port 3050 · Vulnerable Borland Interbase 2007 installation
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (11)

Core 11
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35574
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/474561/100/0/threaded
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26189
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25048
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2642
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2929
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1018451
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/38602

Scores

EPSS 0.6608
EPSS Percentile 99.2%

Details

Status published
Products (1)
borland_software/interbase 2007
Published Jul 26, 2007
Tracked Since Feb 18, 2026