Firebirdsql: >> Firebird >> 1.5.4.4910 Security Vulnerabilities
Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to determine the existence of arbitrary files, and possibly obtain other "file access," via unknown vectors, aka CORE-1312.
CVSS Score
5.0
EPSS Score
0.005
Published
2007-09-04
The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log (firebird.log), aka CORE-1148.
CVSS Score
4.0
EPSS Score
0.004
Published
2007-09-04
Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large p_cnct_count value in a p_cnct structure in a connect (0x01) request to port 3050/tcp, related to "an InterBase version of gds32.dll."
CVSS Score
10.0
EPSS Score
0.282
Published
2007-06-12
Page 2