7.8

CVE-2007-2606

Multiple buffer overflows in Firebird 2.1 allow attackers to trigger memory corruption and possibly have other unspecified impact via certain input processed by (1) config\ConfigFile.cpp or (2) msgs\check_msgs.epp.  NOTE: if ConfigFile.cpp reads a configuration file with restrictive permissions, then the ConfigFile.cpp vector may not cross privilege boundaries and perhaps should not be included in CVE.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
FirebirdsqlFirebird Version2.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.79% 0.755
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://securityreason.com/securityalert/2708
http://www.securityfocus.com/archive/1/468070/100/0/threaded
http://osvdb.org/37308
http://osvdb.org/37309
http://secunia.com/advisories/29501
http://www.debian.org/security/2008/dsa-1529
http://www.securityfocus.com/bid/28478
https://exchange.xforce.ibmcloud.com/vulnerabilities/34201