Firebird@1.5 Security Vulnerabilities and Issues — Firebird@1.5 CVE List

Lucene search

FirebirdsqlFirebird1.5

6 matches found

CVE•added 2009/07/29 5:30 p.m.•53 views

CVE-2009-2620

src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 before 1.5.6, 2.0 before 2.0.6, 2.1 before 2.1.3, and 2.5 before 2.5 Beta 2 allows remote attackers to cause a denial of service (daemon crash) via a malformed op_connect_request message that triggers an infinite loop or NULL pointer derefer...

5CVSS7AI score0.10678EPSS

CVE•added 2006/03/15 5:6 p.m.•41 views

CVE-2006-1240

Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the -p argument.

4.6CVSS6.7AI score0.00362EPSS

CVE•added 2007/06/29 6:30 p.m.•39 views

CVE-2006-7214

Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of service (connection drop) via certain network traffic, as demonstrated by Nessus vulnerability scannin...

7.8CVSS6.9AI score0.0066EPSS

CVE•added 2007/06/29 6:30 p.m.•38 views

CVE-2006-7212

Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240.

6.8CVSS6.7AI score0.00399EPSS

CVE•added 2007/06/29 6:30 p.m.•37 views

CVE-2006-7211

fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores.

4.9CVSS6.2AI score0.00036EPSS

CVE•added 2007/06/29 6:30 p.m.•28 views

CVE-2006-7213

Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database.

5.5CVSS6.3AI score0.00165EPSS