Firebirdsql

Firebird

38 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2009-2620

Exploit
  • EPSS 10.68%
  • Published 29.07.2009 17:30:01
  • Last modified 09.04.2025 00:30:58

src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 before 1.5.6, 2.0 before 2.0.6, 2.1 before 2.1.3, and 2.5 before 2.5 Beta 2 allows remote attackers to cause a denial of service (daemon crash) via a malformed op_connect_request message that ...

10

CVE-2008-0467

  • EPSS 23.51%
  • Published 29.01.2008 02:00:00
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in Firebird before 2.0.4, and 2.1.x before 2.1.0 RC1, might allow remote attackers to execute arbitrary code via a long username.

7.8

CVE-2008-0387

  • EPSS 59.91%
  • Published 29.01.2008 02:00:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in Firebird SQL 1.0.3 and earlier, 1.5.x before 1.5.6, 2.0.x before 2.0.4, and 2.1.x before 2.1.0 RC1 might allow remote attackers to execute arbitrary code via crafted (1) op_receive, (2) op_start, (3) op_start_and_receive, (4) op_s...

10

CVE-2007-4992

  • EPSS 19.89%
  • Published 11.10.2007 00:17:00
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in the process_packet function in fbserver.exe in Firebird SQL 2.0.2 allows remote attackers to execute arbitrary code via a long request to TCP port 3050.

10

CVE-2007-5246

  • EPSS 23.85%
  • Published 06.10.2007 17:17:00
  • Last modified 09.04.2025 00:30:58

Multiple stack-based buffer overflows in Firebird LI 2.0.0.12748 and 2.0.1.12855, and WI 2.0.0.12748 and 2.0.1.12855, allow remote attackers to execute arbitrary code via (1) a long attach request on TCP port 3050 to the isc_attach_database function ...

10

CVE-2007-5245

Exploit
  • EPSS 11.3%
  • Published 06.10.2007 17:17:00
  • Last modified 09.04.2025 00:30:58

Multiple stack-based buffer overflows in Firebird LI 1.5.3.4870 and 1.5.4.4910, and WI 1.5.3.4870 and 1.5.4.4910, allow remote attackers to execute arbitrary code via (1) a long service attach request on TCP port 3050 to the SVC_attach function or (2...

5

CVE-2007-4667

  • EPSS 1.85%
  • Published 04.09.2007 22:17:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the Services API in Firebird before 2.0.2 allows remote attackers to cause a denial of service, aka CORE-1149.

4

CVE-2007-4669

  • EPSS 0.36%
  • Published 04.09.2007 22:17:00
  • Last modified 09.04.2025 00:30:58

The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log (firebird.log), aka CORE-1148.

5

CVE-2007-4668

  • EPSS 0.55%
  • Published 04.09.2007 22:17:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to determine the existence of arbitrary files, and possibly obtain other "file access," via unknown vectors, aka CORE-1312.

5

CVE-2007-4666

  • EPSS 1.85%
  • Published 04.09.2007 22:17:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the server in Firebird before 2.0.2, when a Superserver/TCP/IP environment is configured, allows remote attackers to cause a denial of service (CPU and memory consumption) via "large network packets with garbage", aka COR...