cbcvebase.

Firebirdsql Firebird vulnerabilities

46 known vulnerabilities affecting firebirdsql/firebird.

Total CVEs
46
CISA KEV
0
Public exploits
8
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH19MEDIUM18LOW2

Vulnerabilities

Page 3 of 3
CVE-2007-4665P4MEDIUMCVSS 5.0≤ 2.0.12007-09-04
CVE-2007-4665 [MEDIUM] CWE-119 CVE-2007-4665: Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to cause a Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to cause a denial of service (daemon crash) via an XNET session that makes multiple simultaneous requests to register events, aka CORE-1403.
nvd
CVE-2007-4669P4MEDIUMCVSS 4.0≤ 2.0.12007-09-04
CVE-2007-4669 [MEDIUM] CWE-200 CVE-2007-4669: The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privilege The Services API in Firebird before 2.0.2 allows remote authenticated users without SYSDBA privileges to read the server log (firebird.log), aka CORE-1148.
nvd
CVE-2012-5529P4LOWCVSS 3.5v2.5.0v2.5.12012-11-20
CVE-2012-5529 [LOW] CWE-399 CVE-2012-5529: TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users t TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query.
nvd
CVE-2006-1241P4MEDIUMCVSS 4.6v1.5.2.47312006-03-15
CVE-2006-1241 [MEDIUM] CVE-2006-1241: Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and (3) fb_inet_server with setuid fireb Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and (3) fb_inet_server with setuid firebird permissions, which might allow local users to gain privileges via a buffer overflow as identified by CVE-2006-1240, or possibly other vulnerabilities.
nvd
CVE-2006-7211P4MEDIUMCVSS 4.9v1.52007-06-29
CVE-2006-7211 [MEDIUM] CVE-2006-7211: fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores.
nvd
CVE-2004-1449P4LOWCVSS 2.6v0.72004-12-31
CVE-2004-1449 [LOW] CVE-2004-1449: Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determ Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control.
nvd
Firebirdsql Firebird vulnerabilities | cvebase