TZ Advisores - Buffer Overflow in IBM U2 UniVerse ODBC

From: Claudio Ortiz Meinberg (cmeinbergat_private)
Date: Wed Jul 31 2002 - 12:28:35 PDT

Next message: Tom Perrine: "Re: It takes two to tango"

Previous message: Gibby McCaleb: "RE: It takes two to tango (or samba for that matter)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Systems Affecteds:

All UniVerse versions with UV/ODBC


Explanation:

Trying to make an invalid query the client crashes and make the server slow
with 5sec to 2min lag what could crash the server.


Expoit:

Make a query accessing UV/ODBC (I've used CrystalReports all versions) and
make a valid/invalid link between tables, it will make the server crash, the
line will be locked and the file too.


Resolution:

Just boot the server, it will stop the lag and release the locked line and
file

Next message: Tom Perrine: "Re: It takes two to tango"
Previous message: Gibby McCaleb: "RE: It takes two to tango (or samba for that matter)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jul 31 2002 - 22:47:54 PDT