Computer Security
[EN] securityvulns.ru no-pyccku


Firebird security vulnerabilities
Published:19.03.2013
Source:
SecurityVulns ID:12959
Type:remote
Threat Level:
6/10
Description:Buffer overflow, DoS.
Affected:FIREBIRD : Firebird 2.5
CVE:CVE-2013-2492 (Stack-based buffer overflow in Firebird 2.1.3 through 2.1.5 before 18514, and 2.5.1 through 2.5.3 before 26623, on Windows allows remote attackers to execute arbitrary code via a crafted packet to TCP port 3050, related to a missing size check during extraction of a group number from CNCT information.)
 CVE-2012-5529 (TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2648-1] firebird2.5 security update (19.03.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod