Firebird Unspecified Remote File Enumeration

2007-08-30T11:21:21
ID OSVDB:37310
Type osvdb
Reporter OSVDB
Modified 2007-08-30T11:21:21

Description

Solution Description

Upgrade to version 2.0.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://www.firebirdsql.org/index.php?op=files&id=engine_202 Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=535898 Vendor Specific News/Changelog Entry: http://www.firebirdsql.org/rlsnotes/Firebird-2.0.2-ReleaseNotes.pdf Vendor Specific News/Changelog Entry: http://tracker.firebirdsql.org/browse/CORE-1312 Secunia Advisory ID:26615 Related OSVDB ID: 37311 Related OSVDB ID: 37312 Related OSVDB ID: 37313 Related OSVDB ID: 37314 Other Advisory URL: http://sourceforge.net/project/shownotes.php?release_id=535898 Keyword: CORE-1312 FrSIRT Advisory: ADV-2007-3021 CVE-2007-4668 Bugtraq ID: 25497