CVE-2006-1240
published 2006-03-15CVE-2006-1240: Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the…
PriorityP419medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
0.86%
53.9th percentile
Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the -p argument.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| firebirdsql | firebird | — | — |
| firebirdsql | firebird | — | — |
| firebirdsql | firebird | — | — |
| firebirdsql | firebird | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-w4ww-ggh3-c5vf: Multiple buffer overflows in Firebird 1
ghsa_unreviewed·2022-05-01·CVSS 4.6
CVE-2006-7212 [MEDIUM] GHSA-w4ww-ggh3-c5vf: Multiple buffer overflows in Firebird 1
Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240.
GHSA
GHSA-5hgf-q6f7-84qq: Firebird 1
ghsa_unreviewed·2022-05-01·CVSS 4.6
CVE-2006-1241 [MEDIUM] GHSA-5hgf-q6f7-84qq: Firebird 1
Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and (3) fb_inet_server with setuid firebird permissions, which might allow local users to gain privileges via a buffer overflow as identified by CVE-2006-1240, or possibly other vulnerabilities.
GHSA
GHSA-233p-fww7-3x94: Buffer overflow in inet_server
ghsa_unreviewed·2022-05-01
CVE-2006-1240 [MEDIUM] GHSA-233p-fww7-3x94: Buffer overflow in inet_server
Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the -p argument.
No detection rules found.
No writeups or analysis indexed.
http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/043546.htmlhttp://www.securityfocus.com/archive/1/427480/100/0/threadedhttp://www.securityfocus.com/bid/17077https://exchange.xforce.ibmcloud.com/vulnerabilities/25282http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/043546.htmlhttp://www.securityfocus.com/archive/1/427480/100/0/threadedhttp://www.securityfocus.com/bid/17077https://exchange.xforce.ibmcloud.com/vulnerabilities/25282
2006-03-15
Published