Firebird Security Vulnerabilities and Issues — Firebird CVE List

Lucene search

FirebirdsqlFirebird

5 matches found

CVE•added 2007/06/12 11:30 p.m.•123 views

CVE-2007-3181

Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large p_cnct_count value in a p_cnct structure in a connect (0x01) request to port 3050/tcp, related to "an InterBase version of gds32.dll."

10CVSS8AI score0.28186EPSS

CVE•added 2007/06/29 6:30 p.m.•39 views

CVE-2006-7214

Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of service (connection drop) via certain network traffic, as demonstrated by Nessus vulnerability scannin...

7.8CVSS6.9AI score0.0066EPSS

CVE•added 2007/06/29 6:30 p.m.•38 views

CVE-2006-7212

Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240.

6.8CVSS6.7AI score0.00399EPSS

CVE•added 2007/06/29 6:30 p.m.•37 views

CVE-2006-7211

fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores.

4.9CVSS6.2AI score0.00036EPSS

CVE•added 2007/06/29 6:30 p.m.•28 views

CVE-2006-7213

Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database.

5.5CVSS6.3AI score0.00165EPSS