CVSS: 6.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-3527
https://notcve.org/view.php?id=CVE-2007-3527
03 Jul 2007 — Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certain database operations with multi-byte character sets that trigger an attempt to use the value 65536 for a 16-bit integer, which is treated as 0 and causes an infinite loop on zero-length data. Desbordamiento de entero en Firebird 2.0.0 permite a atacantes remotos provocar una denegación de servicio (agotamiento de CPU) mediante determinadas operaciones de base de datos con juegos de ... • http://osvdb.org/43782 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-7211
https://notcve.org/view.php?id=CVE-2006-7211
29 Jun 2007 — fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores. fb_lock_mgr en Firebird 1.5 utiliza permisos débiles (0666) para el array semáforo, lo cual permite a usuarios locales provocar una denegación de servicio (procesamiento de peticiones bloqueado) bloqueando los semáforos. • http://secunia.com/advisories/29501 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2006-7212
https://notcve.org/view.php?id=CVE-2006-7212
29 Jun 2007 — Multiple buffer overflows in Firebird 1.5, one of which affects WNET, have unknown impact and attack vectors. NOTE: this issue might overlap CVE-2006-1240. Múltiples desbordamientos de búfer en Firebird 1.5, uno de los cuales afecta a WNET, tienen impacto y vectores de ataque desconocidos. NOTA: este problema podría solaparse con CVE-2006-1240. • http://secunia.com/advisories/29501 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-7213
https://notcve.org/view.php?id=CVE-2006-7213
29 Jun 2007 — Firebird 1.5 allows remote authenticated users without SYSDBA and owner permissions to overwrite a database by creating a database. Firebird 1.5 permite a usuarios autenticados remotamente sin permisos de SYSDBA y propietario sobrescribir una base de datos creando una base de datos. • http://secunia.com/advisories/29501 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2006-7214
https://notcve.org/view.php?id=CVE-2006-7214
29 Jun 2007 — Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of service (connection drop) via certain network traffic, as demonstrated by Nessus vulnerability scanning. Múltiples vulnerabilidades no especificadas en Firebird 1.5 permiten a atacantes remotos (1) provocar una denegación de servicio (caída de la aplicación) enviando muchas versiones de protocolo remoto; y (2) pro... • http://secunia.com/advisories/29501 •
CVSS: 10.0EPSS: 28%CPEs: 2EXPL: 2CVE-2007-3181 – Firebird SQL Fbserver 2.0 - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-3181
12 Jun 2007 — Buffer overflow in fbserver.exe in Firebird SQL 2 before 2.0.1 allows remote attackers to execute arbitrary code via a large p_cnct_count value in a p_cnct structure in a connect (0x01) request to port 3050/tcp, related to "an InterBase version of gds32.dll." Desbordamiento de búfer en fbserver.exe de Firebird SQL 2 before 2.0.1 permite a atacantes remotos ejecutar código de su elección mediante un valor p_cnct_count grande en una estructura p_cnct structure en una petición de conexión (0x01) al puerto 3050... • https://www.exploit-db.com/exploits/30186 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-2606
https://notcve.org/view.php?id=CVE-2007-2606
11 May 2007 — Multiple buffer overflows in Firebird 2.1 allow attackers to trigger memory corruption and possibly have other unspecified impact via certain input processed by (1) config\ConfigFile.cpp or (2) msgs\check_msgs.epp. NOTE: if ConfigFile.cpp reads a configuration file with restrictive permissions, then the ConfigFile.cpp vector may not cross privilege boundaries and perhaps should not be included in CVE. Múltiples desbordamientos de búfer en Firebird 2.1 permite a atacantes remotos disparar una corrupción de m... • http://osvdb.org/37308 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 2CVE-2006-1240 – Firebird 1.5 - Inet_Server Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-1240
15 Mar 2006 — Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the -p argument. • https://www.exploit-db.com/exploits/27418 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2006-1241
https://notcve.org/view.php?id=CVE-2006-1241
15 Mar 2006 — Firebird 1.5.2.4731 installs (1) fb_lock_mgr, (2) gds_drop, and (3) fb_inet_server with setuid firebird permissions, which might allow local users to gain privileges via a buffer overflow as identified by CVE-2006-1240, or possibly other vulnerabilities. • http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/043546.html •
CVSS: 8.1EPSS: 0%CPEs: 43EXPL: 0CVE-2004-1449
https://notcve.org/view.php?id=CVE-2004-1449
31 Dec 2004 — Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control. • http://bugzilla.mozilla.org/show_bug.cgi?id=206859#c0 •