| Subject | Re: [IBDI] press article in german paper |
|---|---|
| Author | GARY T BENNER |
| Post date | 2001-01-24T10:38:44Z |
[Reply]
try:
http://www.computerwoche.de/
and search on "Borland"
Gef�hrliche Hintert�r in Borland-Datenbank (12.01.2001)
M�NCHEN (COMPUTERWOCHE) - Auf eine Hintert�r in Borlands Open-Source-Datenbank "Interbase" hat das Computer Emergency Response Team (CERT) hingewiesen. Betroffen sind die Versionen 4.0 bis 6.0. �ber diese Sicherheitsl�cke k�nnten sich Hacker ohne Probleme in das System und den Computer, auf dem es l�uft, einloggen. Damit w�re es beispielsweise m�glich, die Datenbank zu manipulieren und gef�hrliche Programme wie so genannte Trojanische Pferde einzubauen. Die Hintert�r wurde laut CERT nicht durch Dritte nach der Ver�ffentlichung der Open-Source-L�sung eingebaut, sondern stammt von den Autoren des Codes selbst. Borland hat inzwischen Patches f�r das Problem auf seiner Homepage bereitgestellt.
Nachricht erstellt am: 12.01.2001 um: 17:20 Uhr
.courtesy of Babelfish ....
Dangerous back door in boron land data base (12.01.2001)
MUNICH (COMPUTER WEEK) - on a back door in boron country open SOURCE data base " intercousin " referred to the Computer Emergency Response Team (CERT). The versions 4,0 to 6.0 are concerned. Over this safety gap itself hackers without problems could into the system and the computer, on which it runs, log in. Thus it would be for example possible to manipulate the data base and to insert dangerous programs like Trojan horses so mentioned. The back door was inserted according to CERT not through third after the publication of the open SOURCE solution, but comes from the authors of the code. Boron country supplied in the meantime Patches for the problem on its homepage.
Message creates to: 12,01,2001 over: 17:20 o'clock
Gary Benner - Software Developer gary@...
Corporate Software New Zealand Limited Auckland - New Zealand
tel: +64-9 846-6067 (24hr) fax: +64-9 846-6152 mob: (021)-966-992
Software System Design - Consulting - Mentoring - Data Modelling
Client Server - Delphi - Interbase - Oracle - Web-based Technologies
Electronic Automation and Systems - Microcontroller Design & Software
http://www.corporate.co.nz
try:
http://www.computerwoche.de/
and search on "Borland"
Gef�hrliche Hintert�r in Borland-Datenbank (12.01.2001)
M�NCHEN (COMPUTERWOCHE) - Auf eine Hintert�r in Borlands Open-Source-Datenbank "Interbase" hat das Computer Emergency Response Team (CERT) hingewiesen. Betroffen sind die Versionen 4.0 bis 6.0. �ber diese Sicherheitsl�cke k�nnten sich Hacker ohne Probleme in das System und den Computer, auf dem es l�uft, einloggen. Damit w�re es beispielsweise m�glich, die Datenbank zu manipulieren und gef�hrliche Programme wie so genannte Trojanische Pferde einzubauen. Die Hintert�r wurde laut CERT nicht durch Dritte nach der Ver�ffentlichung der Open-Source-L�sung eingebaut, sondern stammt von den Autoren des Codes selbst. Borland hat inzwischen Patches f�r das Problem auf seiner Homepage bereitgestellt.
Nachricht erstellt am: 12.01.2001 um: 17:20 Uhr
.courtesy of Babelfish ....
Dangerous back door in boron land data base (12.01.2001)
MUNICH (COMPUTER WEEK) - on a back door in boron country open SOURCE data base " intercousin " referred to the Computer Emergency Response Team (CERT). The versions 4,0 to 6.0 are concerned. Over this safety gap itself hackers without problems could into the system and the computer, on which it runs, log in. Thus it would be for example possible to manipulate the data base and to insert dangerous programs like Trojan horses so mentioned. The back door was inserted according to CERT not through third after the publication of the open SOURCE solution, but comes from the authors of the code. Boron country supplied in the meantime Patches for the problem on its homepage.
Message creates to: 12,01,2001 over: 17:20 o'clock
>To :========================================================
>CC :
>From: , Schlottmann-Goedde@...
>Benny schrieb:
>>
>> The german issue of Computerweek (Computerwoche)released an article
>> in
>> it's latest release(19.Jan.2001) about the security whole in IB.
>> Headline is "Borland stops long standing security whole in Interbase"
>> and in the tag line "Bug exists since 1992".
>
>Is it possible to get a scanned version of this article by mail?
>
>It's impossible to get a printed copy of "Computerwoche" here,
>and I would like to check the article, whether there should
>be a comment from Firebird.
>
Gary Benner - Software Developer gary@...
Corporate Software New Zealand Limited Auckland - New Zealand
tel: +64-9 846-6067 (24hr) fax: +64-9 846-6152 mob: (021)-966-992
Software System Design - Consulting - Mentoring - Data Modelling
Client Server - Delphi - Interbase - Oracle - Web-based Technologies
Electronic Automation and Systems - Microcontroller Design & Software
http://www.corporate.co.nz