CVE-2007-4992Improper Restriction of Operations within the Bounds of a Memory Buffer in Firebird

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
19.9%
top 4.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Firebirdsql Firebird
Timeline
PublishedOct 11
Latest updateMay 1

Description

Stack-based buffer overflow in the process_packet function in fbserver.exe in Firebird SQL 2.0.2 allows remote attackers to execute arbitrary code via a long request to TCP port 3050.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-qfqw-7vp2-p8m5: Stack-based buffer overflow in the process_packet function in fbserver2022-05-01
CVEList
CVE-2007-4992: Stack-based buffer overflow in the process_packet function in fbserver2007-10-11
CVE-2007-4992 — Firebirdsql Firebird vulnerability | cvebase