Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firebirdsql vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-7214
Multiple unspecified vulnerabilities in Firebird 1.5 allow remote malicious users to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of service (connection drop) via certain network traffic, as demonstrated by Nes...
Firebirdsql Firebird 1.5
NA
CVE-2003-0281
Buffer overflow in Firebird 1.0.2 and other versions prior to 1.5, and possibly other products that use the InterBase codebase, allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_inet_server, (2) gds_lock_mgr, or (3) gds_dr...
Firebirdsql Firebird 1.0.2
3 EDB exploits
6.5
CVSSv3
CVE-2016-1569
FireBird 2.5.5 allows remote authenticated users to cause a denial of service (daemon crash) by using service manager to invoke the gbak utility with an invalid parameter.
Firebirdsql Firebird 2.5.5
NA
CVE-2006-7211
fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores.
Firebirdsql Firebird 1.5
NA
CVE-2006-1241
Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and (3) fb_inet_server with setuid firebird permissions, which might allow local users to gain privileges via a buffer overflow as identified by CVE-2006-1240, or possibly other vulnerabilities.
Firebirdsql Firebird 1.5.2.4731
8.8
CVSSv3
CVE-2017-11509
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement.
Firebirdsql Firebird 2.5.7
Firebirdsql Firebird 3.0.2
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
NA
CVE-2007-3181
Buffer overflow in fbserver.exe in Firebird SQL 2 prior to 2.0.1 allows remote malicious users to execute arbitrary code via a large p_cnct_count value in a p_cnct structure in a connect (0x01) request to port 3050/tcp, related to "an InterBase version of gds32.dll."
Bakbone Netvault 6.x
Firebirdsql Firebird
1 EDB exploit
NA
CVE-2004-0718
The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injecti...
Firebirdsql Firebird 0.7
Mozilla Mozilla 1.6
Netscape Navigator 7.1
NA
CVE-2004-0779
The (1) Mozilla 1.6, (2) Firebird 0.7 and (3) Firefox 0.8 web browsers do not properly verify that cached passwords for SSL encrypted sites are only sent via SSL encrypted sessions to the site, which allows a remote malicious user to cause a cached password to be sent in cleartex...
Mozilla Firefox 0.8
Mozilla Mozilla 1.6
Firebirdsql Firebird 0.7
NA
CVE-2001-0008
Backdoor account in Interbase database server allows remote malicious users to overwrite arbitrary files using stored procedures.
Firebirdsql Firebird
Borland Software Interbase 5.0
Borland Software Interbase 6.0
Borland Software Interbase 4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »