unixODBC 'SQLDriverConnect()' 'SAVEFILE' Parameter Buffer Overflow Vulnerability

unixODBC is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer.

Successfully exploiting this issue may allow an attacker to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will likely cause a denial of service.


Privacy Statement
Copyright 2010, SecurityFocus