Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

firebirdsql firebird 1.5 vulnerabilities and exploits

(subscribe to this query)
7.8
CVSSv2
CVE-2008-0387
Integer overflow in Firebird SQL 1.0.3 and previous versions, 1.5.x prior to 1.5.6, 2.0.x prior to 2.0.4, and 2.1.x prior to 2.1.0 RC1 might allow remote malicious users to execute arbitrary code via crafted (1) op_receive, (2) op_start, (3) op_start_and_receive, (4) op_send, (5)...
Firebirdsql FirebirdFirebirdsql Firebird 2.1.0
7.8
CVSSv2
CVE-2006-7214
Multiple unspecified vulnerabilities in Firebird 1.5 allow remote malicious users to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of service (connection drop) via certain network traffic, as demonstrated by Nes...
Firebirdsql Firebird 1.5
6.8
CVSSv2
CVE-2006-7212
Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240.
Firebirdsql Firebird 1.5
5.5
CVSSv2
CVE-2006-7213
Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database.
Firebirdsql Firebird 1.5
5
CVSSv2
CVE-2009-2620
src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 prior to 1.5.6, 2.0 prior to 2.0.6, 2.1 prior to 2.1.3, and 2.5 prior to 2.5 Beta 2 allows remote malicious users to cause a denial of service (daemon crash) via a malformed op_connect_request message that triggers an infi...
Firebirdsql Firebird 1.5.2Firebirdsql Firebird 1.5.2.4731Firebirdsql FirebirdFirebirdsql Firebird 2.0.1Firebirdsql Firebird 1.5Firebirdsql Firebird 1.5.1Firebirdsql Firebird 2.0.0.12748Firebirdsql Firebird 2.0.2Firebirdsql Firebird 1.5.3.4870Firebirdsql Firebird 1.5.4.4910Firebirdsql Firebird 2.1Firebirdsql Firebird 2.1.2Firebirdsql Firebird 2.1.3Firebirdsql Firebird 1.5.5Firebirdsql Firebird 2.0.0Firebirdsql Firebird 2.5
5
CVSSv2
CVE-2004-2043
Buffer overflow in ibserver for Firebird Database 1.0 and other versions prior to 1.5, and possibly other products that use the InterBase codebase, allows remote malicious users to cause a denial of service (crash) via a long database name, as demonstrated using the gsec command.
Borland Software Interbase 5.0Borland Software Interbase 6.0Borland Software Interbase 4.0Borland Software Interbase Superserver 6.0Firebirdsql Firebird 1.0Borland Software Interbase 6.4Borland Software Interbase 6.5Borland Software Interbase 7.0Borland Software Interbase 7.1
4.9
CVSSv2
CVE-2006-7211
fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores.
Firebirdsql Firebird 1.5
4.6
CVSSv2
CVE-2006-1240
Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the -p argument.
Firebirdsql Firebird 1.5.2Firebirdsql Firebird 1.5Firebirdsql Firebird 1.5.1
4.6
CVSSv2
CVE-2003-0281
Buffer overflow in Firebird 1.0.2 and other versions prior to 1.5, and possibly other products that use the InterBase codebase, allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_inet_server, (2) gds_lock_mgr, or (3) gds_dr...
Firebirdsql Firebird 1.0.2
2.6
CVSSv2
CVE-2004-1449
Mozilla prior to 1.7, Firefox prior to 0.9, and Thunderbird prior to 0.7 allows remote malicious users to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control.
Mozilla Mozilla 0.9.2.1Mozilla Mozilla 0.9.3Mozilla Mozilla 0.9.35Mozilla Mozilla 0.9.4Mozilla Mozilla 1.1Mozilla Mozilla 1.2Mozilla Mozilla 1.2.1Mozilla Thunderbird 0.1Mozilla Thunderbird 0.2Mozilla Thunderbird 0.3Mozilla Thunderbird 0.4Mozilla Mozilla 0.8Mozilla Mozilla 0.9.48Mozilla Mozilla 0.9.6Mozilla Mozilla 1.0Mozilla Mozilla 1.3Mozilla Mozilla 1.4Mozilla Mozilla 1.5.1Mozilla Thunderbird 0.6Mozilla Mozilla 0.9.7Mozilla Mozilla 0.9.8Mozilla Mozilla 0.9.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook