Lucene search

[email protected]CVE-2007-3181

HistoryJun 12, 2007 - 11:30 p.m.

CVE-2007-3181

2007-06-1223:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

buffer overflow

firebird sql

remote attack

arbitrary code

nvd

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.327 Low

EPSS

Percentile

97.0%

JSON

Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large p_cnct_count value in a p_cnct structure in a connect (0x01) request to port 3050/tcp, related to “an InterBase version of gds32.dll.”

CPENameOperatorVersion
bakbone:netvaultbakbone netvaulteq6.x
firebirdsql:firebirdfirebirdsql firebirdle2.0.0

CPE	Name	Operator	Version
bakbone:netvault	bakbone netvault	eq	6.x
firebirdsql:firebird	firebirdsql firebird	le	2.0.0

References

dvlabs.tippingpoint.com/advisory/TPTI-07-11

osvdb.org/37231

secunia.com/advisories/25601

secunia.com/advisories/25872

secunia.com/advisories/29501

security.gentoo.org/glsa/glsa-200707-01.xml

www.debian.org/security/2008/dsa-1529

www.firebirdsql.org/rlsnotes/Firebird-2.0.1-ReleaseNotes.pdf

www.securityfocus.com/bid/24436

www.vupen.com/english/advisories/2007/2149

exchange.xforce.ibmcloud.com/vulnerabilities/34833

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.327 Low

EPSS

Percentile

97.0%

JSON

Related for CVE-2007-3181

securityvulns2 nessus3 gentoo1 openvas2 prion1 ubuntucve1 debian1