Firebirdsql : Security Vulnerabilities, CVEs, Published In 2007 (Denial of service)
Unspecified vulnerability in the Services API in Firebird before 2.0.2 allows remote attackers to cause a denial of service, aka CORE-1149.
Max CVSS
5.0
EPSS Score
6.81%
Published
2007-09-04
Updated
2017-07-29
Unspecified vulnerability in the server in Firebird before 2.0.2, when a Superserver/TCP/IP environment is configured, allows remote attackers to cause a denial of service (CPU and memory consumption) via "large network packets with garbage", aka CORE-1397.
Max CVSS
5.0
EPSS Score
6.81%
Published
2007-09-04
Updated
2017-07-29
Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to cause a denial of service (daemon crash) via an XNET session that makes multiple simultaneous requests to register events, aka CORE-1403.
Max CVSS
5.0
EPSS Score
6.81%
Published
2007-09-04
Updated
2017-07-29
Integer overflow in Firebird 2.0.0 allows remote authenticated users to cause a denial of service (CPU consumption) via certain database operations with multi-byte character sets that trigger an attempt to use the value 65536 for a 16-bit integer, which is treated as 0 and causes an infinite loop on zero-length data.
Max CVSS
6.8
EPSS Score
0.98%
Published
2007-07-03
Updated
2012-10-31
Multiple unspecified vulnerabilities in Firebird 1.5 allow remote attackers to (1) cause a denial of service (application crash) by sending many remote protocol versions; and (2) cause a denial of service (connection drop) via certain network traffic, as demonstrated by Nessus vulnerability scanning.
Max CVSS
7.8
EPSS Score
1.07%
Published
2007-06-29
Updated
2008-09-05
fb_lock_mgr in Firebird 1.5 uses weak permissions (0666) for the semaphore array, which allows local users to cause a denial of service (blocked query processing) by locking semaphores.
Max CVSS
4.9
EPSS Score
0.04%
Published
2007-06-29
Updated
2008-09-05
6 vulnerabilities found