Denial of Service Vulnerability in Firebird Database Server
CVE-2014-9323

Currently unrated

Key Information:

Vendor

Firebirdsql

Status
Firebird
Vendor
CVE Published:
16 December 2014

What is CVE-2014-9323?

The xdr_status_vector function in Firebird versions prior to 2.1.7 and in the 2.5.x series before version 2.5.3 SU1 is vulnerable to a denial of service attack. This vulnerability allows remote attackers to exploit a non-empty status in an op_response action, which can result in a NULL pointer dereference, leading to a segmentation fault and subsequent server crash. It is essential for users and administrators to apply the latest updates to mitigate this risk effectively.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.debian.org/security/2014/dsa-3109
vendor-advisoryx_refsource_DEBIAN
http://www.firebirdsql.org/en/news/security-updates-for-v...
x_refsource_CONFIRM
http://www.mandriva.com/security/advisories?name=MDVSA-20...
vendor-advisoryx_refsource_MANDRIVA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.