Lucene search
PRIOn knowledge basePRION:CVE-2008-1880HistoryMay 12, 2008 - 4:20 p.m.
Default configuration
2008-05-1216:20:00
PRIOn knowledge base
www.prio-n.com
1
7 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
83.8%
The default configuration of Firebird before 2.0.3.12981.0-r6 on Gentoo Linux sets the ISC_PASSWORD environment variable before starting Firebird, which allows remote attackers to bypass SYSDBA authentication and obtain sensitive database information via an empty password.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firebird | le | 2.0.3.12981.0 | |
| firebird | eq | 2.0.3.12981.0 |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200805-06 (firebird)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200805-06 (firebird)
2008-09-24 00:00:00
ubuntucve
ubuntucve
CVE-2008-1880
2008-05-12 00:00:00
seebug
seebug
Firebird ISC_PASSWORD环境变量非授权访问漏洞
2008-05-14 00:00:00
nessus
nessus
GLSA-200805-06 : Firebird: Data disclosure
2008-05-11 00:00:00
gentoo
gentoo
Firebird: Data disclosure
2008-05-09 00:00:00
cvelist
cvelist
CVE-2008-1880
2008-05-12 16:00:00
cve
cve
CVE-2008-1880
2008-05-12 16:20:00
7 High
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.011 Low
EPSS
Percentile
83.8%
Related for PRION:CVE-2008-1880