CVE-2007-3527
published 2007-07-03CVE-2007-3527: Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certain database operations with…
PriorityP421medium6.8CVSS 2.0
AVNACLAuSCNINAC
EPSS
1.56%
72.1th percentile
Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certain database operations with multi-byte character sets that trigger an attempt to use the value 65536 for a 16-bit integer, which is treated as 0 and causes an infinite loop on zero-length data.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| firebirdsql | firebird | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://osvdb.org/43782http://secunia.com/advisories/29501http://tracker.firebirdsql.org/browse/CORE-1063http://www.debian.org/security/2008/dsa-1529http://www.firebirdsql.org/rlsnotes/Firebird-2.0.1-ReleaseNotes.pdfhttp://www.securityfocus.com/bid/28473http://osvdb.org/43782http://secunia.com/advisories/29501http://tracker.firebirdsql.org/browse/CORE-1063http://www.debian.org/security/2008/dsa-1529http://www.firebirdsql.org/rlsnotes/Firebird-2.0.1-ReleaseNotes.pdfhttp://www.securityfocus.com/bid/28473
2007-07-03
Published