Known Vulnerabilities for products from Firebirdsql
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Firebirdsql".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2017-11509 | An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a ma... | 8.8 - HIGH | 2018-03-28 | 2021-11-23 |
| CVE-2017-6369 | Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated use... | 8.8 - HIGH | 2017-03-24 | 2019-10-03 |
| CVE-2016-1569 | FireBird 2.5.5 allows remote authenticated users to cause a denial of service (daemon crash) by using service manager to invo... | 6.5 - MEDIUM | 2016-01-13 | 2016-12-06 |
| CVE-2014-9323 | The xdr_status_vector function in Firebird before 2.1.7 and 2.5.x before 2.5.3 SU1 allows remote attackers to cause a denial ... | 5 - MEDIUM | 2014-12-16 | 2021-03-05 |
| CVE-2013-2492 | Stack-based buffer overflow in Firebird 2.1.3 through 2.1.5 before 18514, and 2.5.1 through 2.5.3 before 26623, on Windows al... | 6.8 - MEDIUM | 2013-03-15 | 2016-12-07 |
| CVE-2012-5529 | TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of servi... | 3.5 - LOW | 2012-11-20 | 2017-08-29 |
| CVE-2009-2620 | src/remote/server.cpp in fbserver.exe in Firebird SQL 1.5 before 1.5.6, 2.0 before 2.0.6, 2.1 before 2.1.3, and 2.5 before 2.... | 5 - MEDIUM | 2009-07-29 | 2017-09-19 |
| CVE-2008-0467 | Stack-based buffer overflow in Firebird before 2.0.4, and 2.1.x before 2.1.0 RC1, might allow remote attackers to execute arb... | 10 - HIGH | 2008-01-29 | 2017-08-08 |
| CVE-2008-0387 | Integer overflow in Firebird SQL 1.0.3 and earlier, 1.5.x before 1.5.6, 2.0.x before 2.0.4, and 2.1.x before 2.1.0 RC1 might ... | 7.8 - HIGH | 2008-01-29 | 2018-10-26 |
| CVE-2007-5246 | Multiple stack-based buffer overflows in Firebird LI 2.0.0.12748 and 2.0.1.12855, and WI 2.0.0.12748 and 2.0.1.12855, allow r... | 10 - HIGH | 2007-10-06 | 2018-10-15 |
| CVE-2007-5245 | Multiple stack-based buffer overflows in Firebird LI 1.5.3.4870 and 1.5.4.4910, and WI 1.5.3.4870 and 1.5.4.4910, allow remot... | 10 - HIGH | 2007-10-06 | 2018-10-15 |
| CVE-2007-4992 | Stack-based buffer overflow in the process_packet function in fbserver.exe in Firebird SQL 2.0.2 allows remote attackers to e... | 10 - HIGH | 2007-10-11 | 2018-10-15 |
| CVE-2007-4669 | The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log ... | 4 - MEDIUM | 2007-09-04 | 2008-09-05 |
| CVE-2007-4668 | Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to determine the existence of arbitr... | 5 - MEDIUM | 2007-09-04 | 2011-03-08 |
| CVE-2007-4667 | Unspecified vulnerability in the Services API in Firebird before 2.0.2 allows remote attackers to cause a denial of service, ... | 5 - MEDIUM | 2007-09-04 | 2017-07-29 |
| CVE-2007-4666 | Unspecified vulnerability in the server in Firebird before 2.0.2, when a Superserver/TCP/IP environment is configured, allows... | 5 - MEDIUM | 2007-09-04 | 2017-07-29 |
| CVE-2007-4665 | Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to cause a denial of service (daemon... | 5 - MEDIUM | 2007-09-04 | 2017-07-29 |
| CVE-2007-4664 | Unspecified vulnerability in the (1) attach database and (2) create database functionality in Firebird before 2.0.2, when a f... | 7.5 - HIGH | 2007-09-04 | 2017-07-29 |
| CVE-2007-3527 | Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certa... | 6.8 - MEDIUM | 2007-07-03 | 2012-10-31 |
| CVE-2007-3181 | Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large ... | 10 - HIGH | 2007-06-12 | 2017-07-29 |
Known software with vulnerabilities from Firebirdsql
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Firebirdsql | Firebird | - |