Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firebirdsql vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-4664
Unspecified vulnerability in the (1) attach database and (2) create database functionality in Firebird prior to 2.0.2, when a filename exceeds MAX_PATH_LEN, has unknown impact and attack vectors, aka CORE-1405.
Firebirdsql Firebird
7.5
CVSSv2
CVE-2004-0779
The (1) Mozilla 1.6, (2) Firebird 0.7 and (3) Firefox 0.8 web browsers do not properly verify that cached passwords for SSL encrypted sites are only sent via SSL encrypted sessions to the site, which allows a remote malicious user to cause a cached password to be sent in cleartex...
Mozilla Firefox 0.8
Mozilla Mozilla 1.6
Firebirdsql Firebird 0.7
7.5
CVSSv2
CVE-2004-0718
The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injecti...
Firebirdsql Firebird 0.7
Mozilla Mozilla 1.6
Netscape Navigator 7.1
7.2
CVSSv2
CVE-2003-0197
Buffer overflow gds_lock_mgr of Interbase Database 6.x allows local users to gain privileges via a long ISC_LOCK_ENV environment variable (INTERBASE_LOCK).
Borland Software Interbase 6.0
Borland Software Interbase 6.4
Borland Software Interbase 6.5
Firebirdsql Firebird 1.0.2
6.8
CVSSv2
CVE-2013-2492
Stack-based buffer overflow in Firebird 2.1.3 up to and including 2.1.5 prior to 18514, and 2.5.1 up to and including 2.5.3 prior to 26623, on Windows allows remote malicious users to execute arbitrary code via a crafted packet to TCP port 3050, related to a missing size check du...
Firebirdsql Firebird 2.1.3
Firebirdsql Firebird 2.1.4
Firebirdsql Firebird 2.1.5
Firebirdsql Firebird 2.5.1
Firebirdsql Firebird 2.5.2
Firebirdsql Firebird 2.5.3
1 EDB exploit
6.8
CVSSv2
CVE-2007-3527
Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certain database operations with multi-byte character sets that trigger an attempt to use the value 65536 for a 16-bit integer, which is treated as 0 and causes...
Firebirdsql Firebird 2.0.0
6.8
CVSSv2
CVE-2006-7212
Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240.
Firebirdsql Firebird 1.5
6.5
CVSSv2
CVE-2017-6369
Insufficient checks in the UDF subsystem in Firebird 2.5.x prior to 2.5.7 and 3.0.x prior to 3.0.2 allow remote authenticated users to execute code by using a 'system' entrypoint from fbudf.so.
Firebirdsql Firebird 2.5.3
Firebirdsql Firebird 2.5.5
Firebirdsql Firebird 2.5.6
Firebirdsql Firebird 2.5.4
Firebirdsql Firebird 2.5.1
Firebirdsql Firebird 2.5.2
Firebirdsql Firebird 3.0.1
Firebirdsql Firebird 3.0
5.5
CVSSv2
CVE-2006-7213
Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database.
Firebirdsql Firebird 1.5
5
CVSSv2
CVE-2014-9323
The xdr_status_vector function in Firebird prior to 2.1.7 and 2.5.x prior to 2.5.3 SU1 allows remote malicious users to cause a denial of service (NULL pointer dereference, segmentation fault, and crash) via an op_response action with a non-empty status.
Firebirdsql Firebird
Opensuse Evergreen 11.4
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »