Stack-based buffer overflow in Firebird 2.1.3 up to and including 2.1.5 prior to 18514, and 2.5.1 up to and including 2.5.3 prior to 26623, on Windows allows remote malicious users to execute arbitrary code via a crafted packet to TCP port 3050, related to a missing size check during extraction of a group number from CNCT information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
firebirdsql firebird 2.1.3 |
||
firebirdsql firebird 2.1.4 |
||
firebirdsql firebird 2.1.5 |
||
firebirdsql firebird 2.5.1 |
||
firebirdsql firebird 2.5.2 |
||
firebirdsql firebird 2.5.3 |