Ubuntu.comUB:CVE-2008-0387CVE-2008-0387
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.924 High
EPSS
Percentile
98.9%
Integer overflow in Firebird SQL 1.0.3 and earlier, 1.5.x before 1.5.6,
2.0.x before 2.0.4, and 2.1.x before 2.1.0 RC1 might allow remote attackers
to execute arbitrary code via crafted (1) op_receive, (2) op_start, (3)
op_start_and_receive, (4) op_send, (5) op_start_and_send, and (6)
op_start_send_and_receive XDR requests, which triggers memory corruption.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 8.04 | noarch | firebird2.0 | < 2.0.3.12981.ds1-4 | UNKNOWN |
| ubuntu | 8.10 | noarch | firebird2.0 | < 2.0.3.12981.ds1-4 | UNKNOWN |
| ubuntu | 9.04 | noarch | firebird2.0 | < 2.0.3.12981.ds1-4 | UNKNOWN |
| ubuntu | 9.10 | noarch | firebird2.0 | < 2.0.3.12981.ds1-4 | UNKNOWN |
Related
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.924 High
EPSS
Percentile
98.9%