Published: 29/07/2009 Updated: 19/09/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 prior to 1.5.6, 2.0 prior to 2.0.6, 2.1 prior to 2.1.3, and 2.5 prior to 2.5 Beta 2 allows remote malicious users to cause a denial of service (daemon crash) via a malformed op_connect_request message that triggers an infinite loop or NULL pointer dereference.

Vulnerable Product	Search on Vulmon	Subscribe to Product
firebirdsql firebird 1.5.2
firebirdsql firebird 1.5.2.4731
firebirdsql firebird
firebirdsql firebird 2.0.1
firebirdsql firebird 1.5
firebirdsql firebird 1.5.1
firebirdsql firebird 2.0.0.12748
firebirdsql firebird 2.0.2
firebirdsql firebird 1.5.3.4870
firebirdsql firebird 1.5.4.4910
firebirdsql firebird 2.1
firebirdsql firebird 2.1.2
firebirdsql firebird 2.1.3
firebirdsql firebird 1.5.5
firebirdsql firebird 2.0.0
firebirdsql firebird 2.5

CWE-20 http://tracker.firebirdsql.org/browse/CORE-2563 http://www.securityfocus.com/bid/35842 http://www.coresecurity.com/content/firebird-sql-dos https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01341.html https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01370.html https://bugzilla.redhat.com/show_bug.cgi?id=514463 http://www.exploit-db.com/exploits/9295 https://nvd.nist.gov https://www.exploit-db.com/exploits/9295/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-2620

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect