Stack-based Buffer Overflow in Firebird SQL by Firebird Foundation
CVE-2007-4992

Currently unrated

Key Information:

Vendor: Firebirdsql
Status: Firebird
Vendor: CVE Published:; 11 October 2007

🔔 Create Firebirdsql Vulnerability Alert

What is CVE-2007-4992?

A vulnerability in Firebird SQL 2.0.2 allows remote attackers to exploit a stack-based buffer overflow in the process_packet function of fbserver.exe. By sending a specially crafted long request to TCP port 3050, an attacker could execute arbitrary code on the affected system. This vulnerability poses significant security risks, as it enables unauthorized access and potential control over the database server.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/37079

vdb-entryx_refsource_XF

http://securitytracker.com/id?1018802

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/26011

vdb-entryx_refsource_BID

EPSS Score

19% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 11, 2007
Vulnerability Reserved
Sep 20, 2007

CVE-2007-4992 Data

JSON