CVE-2017-6369
published 2017-03-24CVE-2017-6369: Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated users to execute code by using a…
PriorityP352high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
3.27%
86.9th percentile
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated users to execute code by using a 'system' entrypoint from fbudf.so.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firebird3.0 | < firebird3.0 3.0.1.32609.ds4-14 (bookworm) | firebird3.0 3.0.1.32609.ds4-14 (bookworm) |
| firebirdsql | firebird | >= 2.5.0 < 2.5.7 | 2.5.7 |
| firebirdsql | firebird | >= 3.0.0 < 3.0.2 | 3.0.2 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
osv8.8HIGH
vendor_debian8.8HIGH
vendor_ubuntu5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Firebird vulnerability
vendor_ubuntu·2021-03-15
CVE-2017-6369 Firebird vulnerability
Title: Firebird vulnerability
Summary: Firebird could be made to crash or run programs if it received specially
crafted input.
It was discovered that Firebird exposed certain UDF libraries. An
authenticated attacker could use this vulnerability to cause a denial of service
(crash) or possibly execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Ubuntu
Firebird vulnerabilities
vendor_ubuntu·2019-04-02·CVSS 5.0
CVE-2014-9323 [MEDIUM] Firebird vulnerabilities
Title: Firebird vulnerabilities
Summary: Several security issues were fixed in Firebird.
It was discovered that Firebird incorrectly handled certain malformed
packets. A remote attacker could possibly use this issue with a specially
crafted network packet to cause Firebird to crash, resulting in a denial of
service.
(CVE-2014-9323)
It was discovered that Firebird incorrectly handled certain UDF libraries.
A remote attacker could possibly use this issue to execute arbitrary code.
(CVE-2017-6369)
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2017-6369: firebird3.0 - Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0....
vendor_debian·2017·CVSS 8.8
CVE-2017-6369 [HIGH] CVE-2017-6369: firebird3.0 - Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0....
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated users to execute code by using a 'system' entrypoint from fbudf.so.
Scope: local
bookworm: resolved (fixed in 3.0.1.32609.ds4-14)
bullseye: resolved (fixed in 3.0.1.32609.ds4-14)
forky: resolved (fixed in 3.0.1.32609.ds4-14)
sid: resolved (fixed in 3.0.1.32609.ds4-14)
trixie: resolved (fixed in 3.0.1.32609.ds4-14)
GHSA
GHSA-vf42-c4fw-rcm3: Insufficient checks in the UDF subsystem in Firebird 2
ghsa_unreviewed·2022-05-13
CVE-2017-6369 [HIGH] CWE-862 GHSA-vf42-c4fw-rcm3: Insufficient checks in the UDF subsystem in Firebird 2
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated users to execute code by using a 'system' entrypoint from fbudf.so.
OSV
firebird2.5 vulnerabilities
osv·2019-04-02·CVSS 5.0
CVE-2014-9323 [MEDIUM] firebird2.5 vulnerabilities
firebird2.5 vulnerabilities
It was discovered that Firebird incorrectly handled certain malformed
packets. A remote attacker could possibly use this issue with a specially
crafted network packet to cause Firebird to crash, resulting in a denial of
service.
(CVE-2014-9323)
It was discovered that Firebird incorrectly handled certain UDF libraries.
A remote attacker could possibly use this issue to execute arbitrary code.
(CVE-2017-6369)
OSV
CVE-2017-6369: Insufficient checks in the UDF subsystem in Firebird 2
osv·2017-03-24·CVSS 8.8
CVE-2017-6369 [HIGH] CVE-2017-6369: Insufficient checks in the UDF subsystem in Firebird 2
Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated users to execute code by using a 'system' entrypoint from fbudf.so.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-11509 firebird: Firebird fbudf Module Authenticated Remote Code Execution [fedora-all]
bugzilla·2018-03-29·CVSS 8.8
CVE-2017-11509 [HIGH] CVE-2017-11509 firebird: Firebird fbudf Module Authenticated Remote Code Execution [fedora-all]
CVE-2017-11509 firebird: Firebird fbudf Module Authenticated Remote Code Execution [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple
Bugzilla
CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode [epel-all]
bugzilla·2017-02-21·CVSS 8.8
CVE-2017-6369 [HIGH] CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode [epel-all]
CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affect
Bugzilla
CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode
bugzilla·2017-02-21·CVSS 8.8
CVE-2017-6369 [HIGH] CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode
CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode
A serious security problem existed with the access to undesired external modules, even if 'Restrict' configuration mode was specified for UdfAccess.
References:
http://www.firebirdsql.org/file/documentation/release_notes/html/en/2_5/rnfb25-bug.html#bug-257
Discussion:
Created firebird tracking bugs for this issue:
Affects: epel-all [bug 1425332]
Affects: fedora-all [bug 1425333]
Bugzilla
CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode [fedora-all]
bugzilla·2017-02-21·CVSS 8.8
CVE-2017-6369 [HIGH] CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode [fedora-all]
CVE-2017-6369 firebird: Access to undesired external modules during 'Restrict' configuration mode [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue af
Tenable
[R1] Firebird fbudf Module Authenticated Remote Code Execution
blogs_tenable·2017-11-21
[R1] Firebird fbudf Module Authenticated Remote Code Execution
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
http://tracker.firebirdsql.org/browse/CORE-5474http://www.debian.org/security/2017/dsa-3824http://www.securityfocus.com/bid/97070https://usn.ubuntu.com/3929-1/http://tracker.firebirdsql.org/browse/CORE-5474http://www.debian.org/security/2017/dsa-3824http://www.securityfocus.com/bid/97070https://usn.ubuntu.com/3929-1/
2017-03-24
Published